Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

atlassian jira 3.1 vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2008-6531
The WebWork 1 web application framework in Atlassian JIRA before 3.13.2 allows remote attackers to invoke exposed public JIRA methods via a crafted URL that is dynamically transformed into method calls, aka "WebWork 1 Parameter Injection Hole."...
Atlassian JiraAtlassian Jira 2.1Atlassian Jira 2.2Atlassian Jira 2.2.1Atlassian Jira 2.3Atlassian Jira 2.4.1Atlassian Jira 2.5.1Atlassian Jira 2.5.2Atlassian Jira 2.5.3Atlassian Jira 2.6Atlassian Jira 2.6.1Atlassian Jira 3.0Atlassian Jira 3.0.1Atlassian Jira 3.0.2Atlassian Jira 3.0.3Atlassian Jira 3.1Atlassian Jira 3.1.1Atlassian Jira 3.2Atlassian Jira 3.2.1Atlassian Jira 3.2.2Atlassian Jira 3.2.3Atlassian Jira 3.3Atlassian Jira 3.3.1Atlassian Jira 3.3.2Atlassian Jira 3.3.3Atlassian Jira 3.4.1Atlassian Jira 3.4.2Atlassian Jira 3.4.3Atlassian Jira 3.5Atlassian Jira 3.5.1Atlassian Jira 3.5.2Atlassian Jira 3.5.3Atlassian Jira 3.6Atlassian Jira 3.6.1Atlassian Jira 3.6.2Atlassian Jira 3.6.3Atlassian Jira 3.6.4Atlassian Jira 3.6.5Atlassian Jira 3.7Atlassian Jira 3.7.1Atlassian Jira 3.7.2Atlassian Jira 3.7.3Atlassian Jira 3.7.4Atlassian Jira 3.8Atlassian Jira 3.8.1Atlassian Jira 3.9Atlassian Jira 3.9.1Atlassian Jira 3.9.2Atlassian Jira 3.9.3Atlassian Jira 3.10Atlassian Jira 3.10.1Atlassian Jira 3.10.2Atlassian Jira 3.11Atlassian Jira 3.12Atlassian Jira 3.12.1Atlassian Jira 3.12.2Atlassian Jira 3.12.3Atlassian Jira 3.13Atlassian Jira 3.13.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-24069remote code executionmass assignmentCVE-2021-1782CVE-2021-23962CVE-2021-24081cross-site scriptingCVE-2021-21973CVE-2021-23972