Lucene search
+L

5 matches found

NVD
NVD
added 2022/03/16 1:15 a.m.20 views

CVE-2021-43957

Affected versions of Atlassian Fisheye & Crucible allowed remote attackers to browse local files via an Insecure Direct Object References IDOR vulnerability in the WEB-INF directory and bypass the fix for CVE-2020-29446 due to a lack of url decoding. The affected versions are before version 4.8.9...

7.5CVSS0.01275EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/03/16 12:55 a.m.31 views

CVE-2021-43957

Affected versions of Atlassian Fisheye & Crucible allowed remote attackers to browse local files via an Insecure Direct Object References IDOR vulnerability in the WEB-INF directory and bypass the fix for CVE-2020-29446 due to a lack of url decoding. The affected versions are before version 4.8.9...

6.5AI score0.01275EPSS
Exploits0References2
CVE
CVE
added 2022/03/16 12:55 a.m.102 views

CVE-2021-43957

CVE-2021-43957 describes an Insecure Direct Object References (IDOR) vulnerability in Atlassian Fisheye & Crucible that allows remote attackers to browse local files via the WEB-INF directory and bypass the fix for CVE-2020-29446 due to insufficient URL decoding. Affected software: Atlassian Fish...

7.5CVSS6AI score0.01275EPSS
Exploits0References2Affected Software2
Atlassian
Atlassian
added 2022/03/07 8:2 a.m.77 views

CVE-2021-43957: Bypass for CVE-2020-29446 (Local file disclosure / path traversal within WEB-INF)

Affected versions of Atlassian Fisheye & Crucible allowed remote attackers to browse local files via an Insecure Direct Object References IDOR vulnerability in the WEB-INF directory and bypass the fix for CVE-2020-29446 due to a lack of url decoding. The affected versions are before version 4.8.9...

7.5CVSS6AI score0.01275EPSS
Exploits0
Atlassian
Atlassian
added 2022/03/07 8:2 a.m.54 views

CVE-2021-43957: Bypass for CVE-2020-29446 (Local file disclosure / path traversal within WEB-INF)

Affected versions of Atlassian Fisheye & Crucible allowed remote attackers to browse local files via an Insecure Direct Object References IDOR vulnerability in the WEB-INF directory and bypass the fix for CVE-2020-29446 due to a lack of url decoding. The affected versions are before version 4.8.9...

7.5CVSS6AI score0.01275EPSS
Exploits0
Rows per page
Query Builder