WordPress plugin Software Issue Manager 跨站脚本漏洞

The WordPress Software Issue Manager plugin is a project-based WordPress plugin for tracking software defects, issues, tasks, and product feature requests, with support for customized reporting. The WordPress Software Issue Manager plugin suffers from a cross-site scripting vulnerability that ste...

MantisBT 安全漏洞

MantisBT is a Web-based open source defect tracking system from the MantisBT team. The system provides project management and defect tracking services in a web-operable format. A security vulnerability exists in MantisBT versions prior to 2.26.2, which stems from an issue that exposes sensitive...

Atlassian Jira Transition Scheduler plugin跨站脚本漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The Atlassian Jira Transition Scheduler plugin version 6.5.0 contains a cross-site scripting vulnerability, which stems from the fact that it is easy to store XSS to the creation function via the project name. An...

Unauthorized Access Vulnerability in Atlassian System dashboard-Jira

Atlassian Jira is a defect tracking management system from Atlassian. The system is mainly used to track and manage all types of issues and defects in the workplace. An unauthorized access vulnerability exists in Atlassian System dashboard-Jira, which can be exploited by an attacker to obtain...

MantisBT Cross-Site Scripting Vulnerability (CNVD-2022-68821)

MantisBT is a Web-based open source defect tracking system from the Mantisbt team. The system provides project management and defect tracking services in the form of Web operations. cross-site scripting vulnerability exists in versions prior to MantisBT 2.25.2, which originates from an unescaped...

Atlassian Jira 授权问题漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. Atlassian Jira suffers from an authorization issue vulnerability that can be exploited by an attacker to bypass authentication b...

Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2022-17776)

Atlassian Jira is a defect tracking management system from Atlassian Australia. Atlassian Jira has a cross-site scripting vulnerability that can be exploited to inject arbitrary HTML or JavaScript...

Atlassian Jira Information Disclosure Vulnerability (CNVD-2022-05436)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The Atlassian Jira Server is vulnerable to an information disclosure vulnerability that results from configuration and other errors in the operation of a networked system or product. An authenticated remote attacker c...

Atlassian Jira Remote Code Execution Vulnerability

Atlassian Jira is a defect tracking management system from Atlassian Australia. Atlassian Jira is vulnerable to a remote code execution vulnerability that originates when a networked system or product does not properly validate incoming data. An attacker could use this vulnerability to execute...

Atlassian Jira Access Control Error Vulnerability (CNVD-2022-05438)

Atlassian Jira is a defect tracking management system from Atlassian Australia. An access control error vulnerability exists in Atlassian Jira Server and Data Center due to an interruption access control vulnerability in /secure/EditSubscription.jspa, which can be exploited by a remote,...

Redmine Information Disclosure Vulnerability (CNVD-2022-10738)

Redmine is an open source web-based project management and defect tracking tool. The product provides project management, issue tracking, and role-based access control, among other features.A security vulnerability exists in Redmine, which stems from a configuration or other error in the operatio...

bugs 跨站脚本漏洞

Bugs is a branch of the open source Tinyissue defect tracking system by Alexandre Plennevaux, a personal developer in Belgium. bugs 1.8 and earlier versions of install/index.php are vulnerable to cross-site scripting, which can be exploited by remote attackers to inject arbitrary Web script or HT...

Atlassian JIRA Server Cross-Site Scripting Vulnerability (CNVD-2021-55939)

Atlassian JIRA Server is the server version of a defect tracking management system from Atlassian Australia. The system is mainly used for tracking and managing various types of issues and defects in work. A cross-site scripting vulnerability exists in Atlassian Jira Server, which can be exploite...

Atlassian JIRA Server Cross-Site Scripting Vulnerability (CNVD-2021-55940)

Atlassian JIRA Server is the server version of a defect tracking management system from Atlassian Australia. The system is mainly used for tracking and managing various types of problems and defects in work. A cross-site scripting vulnerability exists in Atlassian JIRA Server, which can be...

Kagemai Cross-Site Request Forgery Vulnerability

Kagemai is a defect tracking system used to share information about defects in software under development between development teams. A cross-site request forgery vulnerability exists in Kagemai 0.8.8. An attacker can exploit this vulnerability to hijack administrator authentication...

Redmine Cross-Site Scripting Vulnerability (CNVD-2021-27365)

Redmine is an open source, web-based project management and defect tracking tool. A cross-site scripting vulnerability exists in Redmine. An attacker can exploit this vulnerability via the backurl field to conduct a cross-site scripting attack...

Atlassian Jira Server and Data Center Cross-Site Scripting Vulnerability

Atlassian JIRA Server and Atlassian JIRA Data Center are both products of Atlassian Australia.Atlassian JIRA Server is a server version of a defect tracking management system. Atlassian JIRA Data Center is the data center version of Atlassian JIRA. validation, an attacker could exploit the...

MantisBT Cross-Site Scripting Vulnerability (CNVD-2021-14399)

MantisBT is MantisBT Mantisbt team of a Web-based open source defect tracking system . The system provides project management and defect tracking services in the form of Web operations. A security vulnerability exists in MantisBT 2.24.3 and earlier versions, which stems from a custom field name n...

Atlassian Jira Information Disclosure Vulnerability (CNVD-2021-13209)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. An information disclosure vulnerability exists in Atlassian Jira Server and Data Center, which arises from errors such as...

Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2021-13210)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A cross-site scripting vulnerability exists in Atlassian Jira Server and Data Center, which stems from a lack of proper validati...