CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-9179

Malware in sbrugna...

6.1CVSS6.1AI score0.00203EPSS

Exploits0References3

Tenable Nessus•added 2023/03/14 12:0 a.m.•6 views

Atlassian Jira < 7.6.2 CSRF In IncomingMailServers Resource

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 7.6.2. It is, therefore, affected by a vulnerability which permits remote attackers to modify the "incoming mail" whitelist setting via a Cross-site request forgery CSRF in th...

4.3CVSS7.5AI score0.00103EPSS

Exploits0References2

Tenable Nessus•added 2019/03/05 12:0 a.m.•28 views

Atlassian JIRA < 7.6.2 Cross-Site Request Forgery

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is potentially affected by a cross-site request forgery in the IncomingMailServers resource. A remote attacker can exploit this by tricking a user into visiting a specially crafted web...

4.3CVSS5AI score0.00103EPSS

Exploits0References2

CNVD•added 2018/07/18 12:0 a.m.•2 views

Atlassian JIRA Server Cross-Site Scripting Vulnerability (CNVD-2018-18120)

Atlassian JIRA Server is a defect tracking management system from Atlassian Australia. The system is mainly used to track and manage all kinds of problems and defects in the work. A cross-site scripting vulnerability exists in the IncomingMailServers resource in Atlassian JIRA Server. A remote...

6.1CVSS5.9AI score0.00191EPSS

Exploits0References1

Cvelist•added 2018/07/16 1:0 p.m.•15 views

CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML ...

6AI score0.00191EPSS

Exploits0References2

CNVD•added 2018/02/07 12:0 a.m.•1 views

Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2018-05473)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A cross-site scripting vulnerability exists in the IncomingMailServers resource in Atlassian Jira versions 6.2.1 and 7.4.2. A...

6.1CVSS6.3AI score0.00203EPSS

Exploits0References1

Prion•added 2018/02/02 2:29 p.m.•14 views

Cross site scripting

The IncomingMailServers resource in Atlassian Jira from version 6.2.1 before version 7.4.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the messagesThreshold parameter...

4.3CVSS5.8AI score0.00203EPSS

Exploits0References2Affected Software1

Cvelist•added 2018/02/02 2:0 p.m.•17 views

CVE-2017-18039

5.9AI score0.00203EPSS

Exploits0References2

Atlassian•added 2018/02/02 12:10 a.m.•26 views

XSS in the IncomingMailServers resource through the messagesThreshold parameter - CVE-2017-18039

The IncomingMailServers resource in Atlassian JIRA from version 6.2.1 before version 7.4.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the messagesThreshold parameter...

6.1CVSS5.7AI score0.00203EPSS

Exploits0

Prion•added 2018/01/12 2:29 p.m.•14 views

Cross site request forgery (csrf)

The IncomingMailServers resource in Atlassian Jira before version 7.6.2 allows remote attackers to modify the "incoming mail" whitelist setting via a Cross-site request forgery CSRF vulnerability...

4.3CVSS4.7AI score0.00103EPSS

Exploits0References2Affected Software1

Atlassian•added 2018/01/12 2:26 a.m.•24 views

Cross-site request forgery(CSRF) in the IncomingMailServers resource - CVE-2017-16862

The IncomingMailServers resource in Atlassian Jira before version 7.6.2 allows remote attackers to modify the "incoming mail" whitelist setting via a Cross-site request forgery CSRF vulnerability...

4.3CVSS5.1AI score0.00103EPSS

Exploits0

Atlassian•added 2018/01/12 2:26 a.m.•125 views

Cross-site request forgery(CSRF) in the IncomingMailServers resource - CVE-2017-16862

The IncomingMailServers resource in Atlassian Jira before version 7.6.2 allows remote attackers to modify the "incoming mail" whitelist setting via a Cross-site request forgery CSRF vulnerability...

4.3CVSS5.1AI score0.00103EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by