Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-12897

Malware in sbrugna...

4.3CVSS4.6AI score0.0161EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2019-6089

Malicious code in bioql PyPI...

9CVSS6.9AI score0.11366EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-30803

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00606EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.39 views

Atlassian Jira < 6.0.5 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 6.0.5. It is, therefore, affected by multiple vulnerabilities: - A directory traversal in the Importers Plugin which permits remote attackers to create arbitrary files...

4.3CVSS5.6AI score0.02147EPSS
Exploits3References4
CNVD
CNVD
added 2022/02/17 12:0 a.m.17 views

Atlassian Jira Server jira-importers-plugin跨站请求伪造漏洞

Atlassian Jira Service is the server version of an IT service desk and request tracking system from Atlassian Australia. Atlassian Jira Server jira-importers-plugin is vulnerable to cross-site request forgery, which stems from jira-importers-plugin being misconfigured with XSRF protection. An...

6.5CVSS5.2AI score0.00606EPSS
Exploits0References1
OSV
OSV
added 2022/02/15 4:15 a.m.3 views

CVE-2021-43941

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify several resources including CsvFieldMappingsPage.jspa and ImporterValueMappingsPage.jspa via a Cross-Site Request Forgery CSRF vulnerability in the jira-importers-plugin. The affected versions are before...

6.5CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/02/15 3:30 a.m.14 views

CVE-2021-43941

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify several resources including CsvFieldMappingsPage.jspa and ImporterValueMappingsPage.jspa via a Cross-Site Request Forgery CSRF vulnerability in the jira-importers-plugin. The affected versions are before...

7AI score0.00606EPSS
Exploits0References1
OSV
OSV
added 2021/04/15 12:15 a.m.5 views

CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

4.3CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2021/04/15 12:15 a.m.16 views

CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

4.3CVSS0.0161EPSS
Exploits0References1
Prion
Prion
added 2021/04/15 12:15 a.m.19 views

Information disclosure

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

4CVSS4.1AI score0.0161EPSS
Exploits0References1Affected Software4
Vulnrichment
Vulnrichment
added 2021/04/14 11:45 p.m.15 views

CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

6.1AI score0.0161EPSS
Exploits0References1
CVE
CVE
added 2021/04/14 11:45 p.m.103 views

CVE-2021-26075

CVE-2021-26075 affects Atlassian Jira Server/Data Center: the AttachTemporaryFile REST resource allows remote authenticated attackers to disclose the full path of the Jira application data directory via an error message when an invalid filename is provided. Affected versions are before 8.5.12, fr...

4.3CVSS4.3AI score0.0161EPSS
Exploits0References1Affected Software4
Atlassian
Atlassian
added 2021/04/14 2:32 a.m.57 views

Full path information disclose via invalid filename error message - CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

4.3CVSS3.2AI score0.0161EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2021/04/14 2:32 a.m.32 views

Full path information disclose via invalid filename error message - CVE-2021-26075

The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remote authenticated attackers to obtain the full path of the Jira application data directory via an...

4.3CVSS4.5AI score0.0161EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.54 views

Atlassian Jira 8.2.x < 8.2.5 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 7.0.10 7.6.16, 7.7.x 7.13.8, 8.1.x 8.1.3, 8.2.x 8.2.5, 8.3.x 8.3.4, 8.4.x 8.4.1. It is, therefore, affected by a server-side template injection vulnerability that exists in the Jira Importe...

9CVSS7.4AI score0.11366EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.17 views

Atlassian Jira 8.3.x < 8.3.4 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 7.0.10 7.6.16, 7.7.x 7.13.8, 8.1.x 8.1.3, 8.2.x 8.2.5, 8.3.x 8.3.4, 8.4.x 8.4.1. It is, therefore, affected by a server-side template injection vulnerability that exists in the Jira Importe...

9CVSS7.4AI score0.11366EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.15 views

Atlassian Jira 8.1.x < 8.1.3 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 7.0.10 7.6.16, 7.7.x 7.13.8, 8.1.x 8.1.3, 8.2.x 8.2.5, 8.3.x 8.3.4, 8.4.x 8.4.1. It is, therefore, affected by a server-side template injection vulnerability that exists in the Jira Importe...

9CVSS7.4AI score0.11366EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.11 views

Atlassian Jira 7.0.10 < 7.6.16 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 7.0.10 7.6.16, 7.7.x 7.13.8, 8.1.x 8.1.3, 8.2.x 8.2.5, 8.3.x 8.3.4, 8.4.x 8.4.1. It is, therefore, affected by a server-side template injection vulnerability that exists in the Jira Importe...

9CVSS7.4AI score0.11366EPSS
Exploits0References3
NVD
NVD
added 2019/09/19 3:15 p.m.15 views

CVE-2019-15001

The Jira Importers Plugin in Atlassian Jira Server and Data Cente from version with 7.0.10 before 7.6.16, from 7.7.0 before 7.13.8, from 8.0.0 before 8.1.3, from 8.2.0 before 8.2.5, from 8.3.0 before 8.3.4 and from 8.4.0 before 8.4.1 allows remote attackers with Administrator permissions to gain...

9CVSS7.5AI score0.11366EPSS
Exploits0References3
OSV
OSV
added 2019/09/19 3:15 p.m.4 views

CVE-2019-15001

The Jira Importers Plugin in Atlassian Jira Server and Data Cente from version with 7.0.10 before 7.6.16, from 7.7.0 before 7.13.8, from 8.0.0 before 8.1.3, from 8.2.0 before 8.2.5, from 8.3.0 before 8.3.4 and from 8.4.0 before 8.4.1 allows remote attackers with Administrator permissions to gain...

7.2CVSS7.6AI score0.11366EPSS
Exploits0References3
Rows per page
Query Builder