27 matches found
Improper access control
Affected versions of Atlassian Jira Server and Data Center allow users who have watched an issue to continue receiving updates on the issue even after their Jira account is revoked, via a Broken Access Control vulnerability in the issue notification feature. The affected versions are before versi...
CVE-2021-39119
Affected versions of Atlassian Jira Server and Data Center allow users who have watched an issue to continue receiving updates on the issue even after their Jira account is revoked, via a Broken Access Control vulnerability in the issue notification feature. The affected versions are before versi...
CVE-2021-39119
CVE-2021-39119 affects Atlassian Jira Server and Data Center prior to 8.19.0. The vulnerability is a Broken Access Control in the issue notification feature that allows users who have watched an issue to receive updates even after their Jira account is revoked. Affected versions are before 8.19.0...
Atlassian Jira 授权问题漏洞
Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in Atlassian Jira that stems from a bad access control vulnerability in the Issue Notification...
GitLab Information Disclosure Vulnerability (CNVD-2020-19021)
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. An information disclosure vulnerability exists in the iss...
CVE-2019-12432
An issue was discovered in GitLab Community and Enterprise Edition 8.13 through 11.11. Non-member users who subscribed to issue notifications could access the title of confidential issues through the unsubscription page. It allows Information Disclosure...
Unfixed XSS vulnerability at www.compliancemagazin.de
Security researcher watt, has submitted on 18/10/2010 a cross-site-scripting XSS vulnerability affecting www.compliancemagazin.de, which at the time of submission ranked 548739 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/12/2011. It is...