7 matches found
EUVD-2019-3258
Malware in sbrugna...
EUVD-2019-17838
Malware in sbrugna...
EUVD-2018-13368
Malware in sbrugna...
CVE-2022-44726
The TouchDown Timesheet tracking component 4.1.4 for Jira allows XSS in the calendar view...
Atlassian Jira 8.6.x < 8.13.1 Cross-Site Request Forgery
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.10 or 8.6.x prior to 8.13.1. It is, therefore, affected by a Cross-Site Request Forgery CSRF vulnerability, following an Information Disclosure vulnerability in the referr...
CVE-2019-3403
The /rest/api/2/user/picker rest resource in Jira before version 7.13.3, from version 8.0.0 before version 8.0.4, and from version 8.1.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check...
Jira 4.0.1 - Cross-Site Scripting / Information Disclosure
source: https://www.securityfocus.com/bid/42025/info Jira is prone to multiple cross-site scripting vulnerabilities and an information disclosure vulnerability because the application fails to sufficiently sanitize user-supplied input. Attackers can exploit these issues to obtain sensitive...