Jira Security Vulnerabilities and Issues — Jira CVE List

Lucene search

AtlassianJira

3 matches found

CVE•added 2018/07/16 1:29 p.m.•60 views

CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML or...

6.1CVSS5.8AI score0.00225EPSS

CVE•added 2018/07/24 1:29 p.m.•58 views

CVE-2017-18104

The Webhooks component of Atlassian Jira before version 7.6.7 and from version 7.7.0 before version 7.11.0 allows remote attackers who are able to observe or otherwise intercept webhook events to learn information about changes in issues that should not be sent because they are not contained within...

5.9CVSS5.6AI score0.00272EPSS

CVE•added 2018/07/18 2:29 p.m.•50 views

CVE-2018-5232

The EditIssue.jspa resource in Atlassian Jira before version 7.6.7 and from version 7.7.0 before version 7.10.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the issuetype parameter.

6.1CVSS5.9AI score0.00231EPSS