Jira Security Vulnerabilities and Issues — Jira CVE List

Lucene search

AtlassianJira

3 matches found

CVE•added 2008/01/03 11:46 p.m.•52 views

CVE-2007-6617

Cross-site scripting (XSS) vulnerability in 500page.jsp in JIRA Enterprise Edition before 3.12.1 allows remote attackers to inject arbitrary web script or HTML, which is not properly handled when generating error messages, as demonstrated by input originally sent in the URI to secure/CreateIssue. N...

4.3CVSS5.8AI score0.00447EPSS

CVE•added 2008/01/03 11:46 p.m.•47 views

CVE-2007-6618

JIRA Enterprise Edition before 3.12.1 allows remote attackers to delete another user's shared filter via a modified filter ID.

5CVSS6.6AI score0.00291EPSS

CVE•added 2008/01/03 11:46 p.m.•47 views

CVE-2007-6619

The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language.

7.5CVSS6.6AI score0.00585EPSS