Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian jira data center 8.6.0 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-4022
The attachment download resource in Atlassian Jira Server and Data Center prior to 8.5.5, and from 8.6.0 prior to 8.8.2, and from 8.9.0 prior to 8.9.1 allows remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability issue attachm...
Atlassian Jira
Atlassian Jira Software Data Center
Atlassian Jira Server
Atlassian Jira Data Center
5.4
CVSSv3
CVE-2020-4024
The attachment download resource in Atlassian Jira Server and Data Center prior to 8.5.5, and from 8.6.0 prior to 8.8.2, and from 8.9.0 prior to 8.9.1 allows remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability issue attachm...
Atlassian Jira
Atlassian Jira Software Data Center
Atlassian Jira Server
Atlassian Jira Data Center
4.8
CVSSv3
CVE-2021-39112
Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to redirect users to a malicious URL via a reverse tabnapping vulnerability in the Project Shortcuts feature. The affected versions are before version 8.5.15, from version 8.6.0 prior to 8.13....
Atlassian Data Center
Atlassian Jira
Atlassian Jira Server
Atlassian Jira Data Center
4.3
CVSSv3
CVE-2021-39121
Affected versions of Atlassian Jira Server and Data Center allow authenticated remote malicious users to enumerate the keys of private Jira projects via an Information Disclosure vulnerability in the /rest/api/latest/projectvalidate/key endpoint. The affected versions are before ...
Atlassian Jira
Atlassian Data Center
Atlassian Jira Server
Atlassian Jira Data Center
6.1
CVSSv3
CVE-2020-36236
Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version...
Atlassian Jira
Atlassian Jira Software Data Center
Atlassian Jira Server
Atlassian Jira Data Center
5.4
CVSSv3
CVE-2020-14173
The file upload feature in Atlassian Jira Server and Data Center in affected versions allows remote malicious users to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability. The affected versions are before version 8.5.4, from version 8.6.0 prior to 8...
Atlassian Jira
Atlassian Jira Software Data Center
Atlassian Jira Server
Atlassian Jira Data Center
5.3
CVSSv3
CVE-2021-26069
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote malicious users to download temporary files and enumerate project keys via an Information Disclosure vulnerability in the /rest/api/1.0/issues/{id}/ActionsAndOperations API endpoint. The affec...
Atlassian Jira
Atlassian Data Center
Atlassian Jira Server
Atlassian Jira Data Center
6.5
CVSSv3
CVE-2021-41308
Affected versions of Atlassian Jira Server and Data Center allow authenticated yet non-administrator remote malicious users to edit the File Replication settings via a Broken Access Control vulnerability in the `ReplicationSettings!default.jspa` endpoint. The affected versions ar...
Atlassian Jira
Atlassian Jira Software Data Center
Atlassian Jira Server
Atlassian Jira Data Center
4.3
CVSSv3
CVE-2021-26075
The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 prior to 8.13.4, and from version 8.14.0 prior to 8.15.1 allowed remote authenticated malicious users to obtain the full path of the Jira applicati...
Atlassian Data Center
Atlassian Jira
Atlassian Jira Server
Atlassian Jira Data Center
6.1
CVSSv3
CVE-2021-39111
The Editor plugin in Atlassian Jira Server and Data Center before version 8.5.18, from 8.6.0 prior to 8.13.10, and from version 8.14.0 prior to 8.18.2 allows remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the handli...
Atlassian Jira
Atlassian Data Center
Atlassian Jira Server
Atlassian Jira Data Center
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »