Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

atlassian jira 3.12.3 vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2010-1164
Multiple cross-site scripting (XSS) vulnerabilities in Atlassian JIRA 3.12 through 4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) element or (2) defaultColor parameter to the Colour Picker page; the (3) formName parameter, (4) element parameter, or...
Atlassian Jira 3.12Atlassian Jira 3.12.1Atlassian Jira 3.12.2Atlassian Jira 3.12.3Atlassian Jira 3.13Atlassian Jira 3.13.1Atlassian Jira 3.13.2Atlassian Jira 3.13.3Atlassian Jira 3.13.4Atlassian Jira 3.13.5Atlassian Jira 4.0Atlassian Jira 4.0.1Atlassian Jira 4.0.2Atlassian Jira 4.1
9
CVSSv2
CVE-2010-1165
Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the (1) attachment (aka attachments), (2) index (aka indexing), or (3) backup path and then uploading a file, as exploited in the wild in April 2010....
Atlassian Jira 3.12Atlassian Jira 3.12.1Atlassian Jira 3.12.2Atlassian Jira 3.12.3Atlassian Jira 3.13Atlassian Jira 3.13.1Atlassian Jira 3.13.2Atlassian Jira 3.13.3Atlassian Jira 3.13.4Atlassian Jira 3.13.5Atlassian Jira 4.0Atlassian Jira 4.0.1Atlassian Jira 4.0.2Atlassian Jira 4.1
6.8
CVSSv2
CVE-2008-6531
The WebWork 1 web application framework in Atlassian JIRA before 3.13.2 allows remote attackers to invoke exposed public JIRA methods via a crafted URL that is dynamically transformed into method calls, aka "WebWork 1 Parameter Injection Hole."...
Atlassian JiraAtlassian Jira 2.1Atlassian Jira 2.2Atlassian Jira 2.2.1Atlassian Jira 2.3Atlassian Jira 2.4.1Atlassian Jira 2.5.1Atlassian Jira 2.5.2Atlassian Jira 2.5.3Atlassian Jira 2.6Atlassian Jira 2.6.1Atlassian Jira 3.0Atlassian Jira 3.0.1Atlassian Jira 3.0.2Atlassian Jira 3.0.3Atlassian Jira 3.1Atlassian Jira 3.1.1Atlassian Jira 3.2Atlassian Jira 3.2.1Atlassian Jira 3.2.2Atlassian Jira 3.2.3Atlassian Jira 3.3Atlassian Jira 3.3.1Atlassian Jira 3.3.2Atlassian Jira 3.3.3Atlassian Jira 3.4.1Atlassian Jira 3.4.2Atlassian Jira 3.4.3Atlassian Jira 3.5Atlassian Jira 3.5.1Atlassian Jira 3.5.2Atlassian Jira 3.5.3Atlassian Jira 3.6Atlassian Jira 3.6.1Atlassian Jira 3.6.2Atlassian Jira 3.6.3Atlassian Jira 3.6.4Atlassian Jira 3.6.5Atlassian Jira 3.7Atlassian Jira 3.7.1Atlassian Jira 3.7.2Atlassian Jira 3.7.3Atlassian Jira 3.7.4Atlassian Jira 3.8Atlassian Jira 3.8.1Atlassian Jira 3.9Atlassian Jira 3.9.1Atlassian Jira 3.9.2Atlassian Jira 3.9.3Atlassian Jira 3.10Atlassian Jira 3.10.1Atlassian Jira 3.10.2Atlassian Jira 3.11Atlassian Jira 3.12Atlassian Jira 3.12.1Atlassian Jira 3.12.2Atlassian Jira 3.12.3Atlassian Jira 3.13Atlassian Jira 3.13.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2021-21973mass assignmentCVE-2021-1396CVE-2018-19518CVE-2020-28599deserializationCVE-2021-1230CVE-2021-26681