Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian jira create vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2023-22501
An authentication vulnerability exists in Jira Service Management Server and Data Center which allows an malicious user to impersonate another user and gain access to a Jira Service Management instance under certain circumstances_._ With write access to a User Directory and outgo...
Atlassian Jira Service Management
Atlassian Jira Service Management 5.5.0
1 Github repository
4.3
CVSSv3
CVE-2021-43951
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote malicious users to view object import configuration details via an Information Disclosure vulnerability in the Create Object type mapping feature. The affected versions are be...
Atlassian Jira Service Management
9.8
CVSSv3
CVE-2020-14188
The preprocessArgs function in the Atlassian gajira-create GitHub Action before version 2.0.1 allows remote malicious users to execute arbitrary code in the context of a GitHub runner by creating a specially crafted GitHub issue.
Atlassian Jira Create
4.3
CVSSv3
CVE-2019-11586
The AddResolution.jspa resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote malicious users to create new resolutions via a Cross-site request forgery (CSRF) vulnerability.
Atlassian Jira
Atlassian Jira Server
4.3
CVSSv3
CVE-2018-20826
The inline-create rest resource in Jira before version 7.12.3 allows authenticated remote malicious users to set the reporter in issues via a missing authorisation check.
Atlassian Jira
5.4
CVSSv3
CVE-2016-10716
The Mail.ru Calendar plugin prior to 2.5.0.61 for Atlassian Jira has XSS via the Name field in a Create Calender action, related to a MailRuCalendar.jspa#period/month URI.
Mail.ru Calendar
5.4
CVSSv3
CVE-2016-10715
The Artezio Kanban Board plugin 1.4 revision 1914 for Atlassian Jira has XSS via the Board Name in a Create New Board action, related to an artezioboard/mainPage.jspa?kanbanId=7#/kanban-view URI.
Artezio Kanban Board 1.4
6.5
CVSSv3
CVE-2017-18033
The Jira-importers-plugin in Atlassian Jira before version 7.6.1 allows remote malicious users to create new projects and abort an executing external system import via various Cross-site request forgery (CSRF) vulnerabilities.
Atlassian Jira
NA
CVE-2014-2313
Directory traversal vulnerability in the Importers plugin in Atlassian JIRA prior to 6.0.5 allows remote malicious users to create arbitrary files via unspecified vectors.
Atlassian Jira
Atlassian Jira 6.0.3
Atlassian Jira 6.0.1
Atlassian Jira 6.0.2
Atlassian Jira 6.0
NA
CVE-2014-2314
Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA prior to 6.0.4 allows remote malicious users to create arbitrary files via unspecified vectors.
Atlassian Jira 6.0
Atlassian Jira 6.0.2
Atlassian Jira
Atlassian Jira 6.0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started