Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm
Packet Stormadded 2021/06/01 12:0 a.m.261 views

Atlassian Jira 8.15.0 Username Enumeration

Exploit Title: Atlassian Jira 8.15.0 - Information Disclosure Username Enumeration Date: 31/05/2021 Exploit Author: Mohammed Aloraimi Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/jira Vulnerable versions: version 8.11.x to 8.15.0 Tested on: Kali...

0.1AI score
Exploits0
Hacker One
Hacker Oneadded 2021/04/06 10:55 p.m.92 views

U.S. Dept Of Defense: Sensitive data exposure via https://███████/jira//secure/QueryComponent!Default.jspa - CVE-2020-14179

Description: Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. Impact...

5CVSS2.1AI score0.76042EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2020/10/27 12:0 a.m.27 views

Atlassian Jira 8.6.x < 8.11.1 Sensitive Data Exposure

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.8 or 8.6.x 8.11.1. It is, therefore, affected by a sensitive data exposure vulnerability that allows remote, unauthenticated attackers to view custom field names and custo...

5.3CVSS6.7AI score0.76042EPSS
Exploits1References2
Prion
Prionadded 2020/09/21 1:15 a.m.36 views

Information disclosure

Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. The affected versions are before version 8.5.8, and...

5CVSS5AI score0.76042EPSS
Exploits1References1Affected Software2
CVE
CVEadded 2020/09/21 12:50 a.m.523 views

CVE-2020-14179

CVE-2020-14179 affects Atlassian Jira Server/Data Center versions before 8.5.8 and 8.6.0 through 8.11.1. The vulnerability is an information disclosure in the /secure/QueryComponent!Default.jspa endpoint, allowing remote, unauthenticated attackers to view custom field names and custom SLA names. ...

5.3CVSS5.3AI score0.76042EPSS
Exploits1References1Affected Software2
Atlassian
Atlassianadded 2020/09/10 4:31 a.m.163 views

Sensitive data exposure via /secure/QueryComponent!Default.jspa endpoint - CVE-2020-14179

h3. Summary Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /secure/QueryComponent!Default.jspa endpoint. h3. Affected versions: version 8.5.8 8.6....

5.3CVSS5.4AI score0.76042EPSS
Exploits1
Rows per page
Query Builder