Jira Server@7.9.0 Security Vulnerabilities and Issues — Jira Server@7.9.0 CVE List

Lucene search

AtlassianJira Server7.9.0

9 matches found

CVE•added 2018/05/14 1:29 p.m.•90 views

CVE-2018-5230

The issue collector in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, from version 7.8.0 before version 7.8.4 and from version 7.9.0 before version 7.9.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in t...

6.1CVSS5.9AI score0.20001EPSS

CVE•added 2018/05/16 1:29 p.m.•70 views

CVE-2018-5231

The ForgotLoginDetails resource in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, from version 7.8.0 before version 7.8.4 and from version 7.9.0 before version 7.9.2 allows remote attackers to perform a denial of service attack via sending requests to it.

7.5CVSS7.3AI score0.00979EPSS

CVE•added 2018/08/28 1:0 p.m.•65 views

CVE-2018-13391

The ProfileLinkUserFormat component of Jira Server before version 7.6.8, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3 and from version 7.11.0 before version 7.11.2 allows remote a...

5.3CVSS5.1AI score0.00155EPSS

CVE•added 2018/10/23 2:0 p.m.•62 views

CVE-2018-13401

The XsrfErrorAction resource in Atlassian Jira before version 7.6.9, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3, from version 7.11.0 before version 7.11.3, from version 7.12.0 b...

6.1CVSS6.1AI score0.00087EPSS

CVE•added 2018/07/16 1:29 p.m.•61 views

CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML or...

6.1CVSS5.8AI score0.00203EPSS

CVE•added 2018/10/23 2:0 p.m.•60 views

CVE-2018-13400

Several administrative resources in Atlassian Jira before version 7.6.9, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3, from version 7.11.0 before version 7.11.3, from version 7.12...

6.5CVSS4.8AI score0.00259EPSS

CVE•added 2019/02/13 6:29 p.m.•59 views

CVE-2018-13404

The VerifyPopServerConnection resource in Atlassian Jira before version 7.6.10, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3, from version 7.11.0 before version 7.11.3, from versi...

4.1CVSS4AI score0.00145EPSS

CVE•added 2018/10/23 2:0 p.m.•57 views

CVE-2018-13402

Many resources in Atlassian Jira before version 7.6.9, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3, from version 7.11.0 before version 7.11.3, from version 7.12.0 before version ...

6.1CVSS6.1AI score0.00087EPSS

CVE•added 2018/08/28 1:0 p.m.•50 views

CVE-2018-13395

Various resources in Atlassian Jira before version 7.6.8, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3 and before version 7.11.1 allow remote attackers to inject arbitrary HTML or...

6.1CVSS5.9AI score0.00231EPSS