Jira@6.0.1 Security Vulnerabilities and Issues — Jira@6.0.1 CVE List

Lucene search

AtlassianJira6.0.1

4 matches found

CVE•added 2017/04/10 3:59 p.m.•99 views

CVE-2017-5983

The JIRA Workflow Designer Plugin in Atlassian JIRA Server before 6.3.0 improperly uses an XML parser and deserializer, which allows remote attackers to execute arbitrary code, read arbitrary files, or cause a denial of service via a crafted serialized Java object.

9.8CVSS9.3AI score0.04886EPSS

CVE•added 2014/03/09 1:16 p.m.•67 views

CVE-2014-2314

Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors.

4.3CVSS6.8AI score0.66824EPSS

CVE•added 2013/08/20 2:55 p.m.•51 views

CVE-2013-5319

Cross-site scripting (XSS) vulnerability in secure/admin/user/views/deleteuserconfirm.jsp in the Admin Panel in Atlassian JIRA before 6.0.5 allows remote attackers to inject arbitrary web script or HTML via the name parameter to secure/admin/user/DeleteUser!default.jspa.

4.3CVSS5.8AI score0.00508EPSS

CVE•added 2014/03/09 1:16 p.m.•44 views

CVE-2014-2313

Directory traversal vulnerability in the Importers plugin in Atlassian JIRA before 6.0.5 allows remote attackers to create arbitrary files via unspecified vectors.

4.3CVSS6.8AI score0.00313EPSS