Crucible Security Vulnerabilities and Issues — Crucible CVE List

Lucene search

AtlassianCrucible

2 matches found

CVE•added 2017/10/11 6:29 p.m.•64 views

CVE-2017-14587

The administration user deletion resource in Atlassian Fisheye and Crucible before version 4.4.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the uname parameter.

5.4CVSS5.3AI score0.00196EPSS

CVE•added 2017/10/11 6:29 p.m.•48 views

CVE-2017-14588

Various resources in Atlassian Fisheye and Crucible before version 4.4.2 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the dialog parameter.

6.1CVSS5.9AI score0.00239EPSS