CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-5341

Malware in sbrugna...

6.5CVSS6.5AI score0.00136EPSS

Exploits0References3

Atlassian•added 2023/06/13 2:28 p.m.•22 views

Smart commit action do not respect user permission for Comment actions

h3. Summary When executing a smart commit for adding a comment as per Processing issues with Smart Commits|https://confluence.atlassian.com/jirasoftwareserver0904/processing-issues-with-smart-commits-1188765783.html, it is not failing even if the user does not have permission for the requested...

6.8AI score

Exploits0Affected Software1

CNVD•added 2018/09/20 12:0 a.m.•3 views

Atlassian Fisheye and Crucible Cross-Site Request Forgery Vulnerabilities

Atlassian FishEye and Crucible are both products of the Australian company Atlassian, FishEye is a suite of software for deep viewing of source code repositories and Crucible is a suite of code review tools. A cross-site request forgery vulnerability exists in the administrative smart-commits...

6.5CVSS6.6AI score0.00136EPSS

Exploits0References1

OSV•added 2018/09/18 2:29 p.m.•1 views

CVE-2018-13398

The administrative smart-commits resource in Atlassian Fisheye and Crucible before version 4.5.4 allows remote attackers to modify smart-commit settings via a Cross-site request forgery CSRF vulnerability...

6.5CVSS5.8AI score0.00136EPSS

Exploits0References2

CVE•added 2018/09/18 2:0 p.m.•48 views

CVE-2018-13398

The vulnerability affects Atlassian Fisheye and Crucible’s administrative smart-commits resource prior to version 4.5.4, where insufficient CSRF protection allows remote attackers to modify smart-commit settings. Root cause is a CSRF flaw in the admin endpoint; impact is the ability to alter comm...

6.5CVSS6.5AI score0.00136EPSS

Exploits0References2Affected Software2