Lucene search
Data Center Security Vulnerabilities - February 2022
cve
Affected versions of Atlassian Jira Server and Data Center allow remote attackers with Roadmaps Administrator permissions to inject arbitrary HTML or JavaScript via a Stored Cross-Site Scripting (SXSS) vulnerability in the /rest/jpo/1.0/hierarchyConfiguration endpoint. The affected versions are bef...
4.8CVSS
4.9AI Score
0.001EPSS
2022-02-28 01:15 AM
79
cve
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring settings via a Cross-Site Request Forgery (CSRF) vulnerability in the /secure/admin/ViewInstrumentation.jspa endpoint. The affected versions are befor...
4.3CVSS
4.7AI Score
0.001EPSS
2022-02-15 03:15 AM
88