Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian jira data center 8.6.0 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2020-4025
The attachment download resource in Atlassian Jira Server and Data Center The attachment download resource in Atlassian Jira Server and Data Center prior to 8.5.5, and from 8.6.0 prior to 8.8.2, and from 8.9.0 prior to 8.9.1 allows remote malicious users to inject arbitrary HTML ...
Atlassian Jira
Atlassian Jira Server
Atlassian Jira Software Data Center
Atlassian Jira Data Center
383
VMScore
CVE-2021-26076
The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15.0 allows remote anonymous attackers who can perform an attacker in the middle...
Atlassian Data Center
Atlassian Jira Data Center
Atlassian Jira
Atlassian Jira Server
446
VMScore
CVE-2020-29453
The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Center before version 8.5.11, from 8.6.0 prior to 8.13.3, and from 8.14.0 prior to 8.15.0 allowed unauthenticated remote malicious users to read arbitrary files within WEB-INF and META-INF directories via a...
Atlassian Data Center
Atlassian Jira Data Center
Atlassian Jira Server
445
VMScore
CVE-2021-39125
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote malicious users to discover the usernames of users via an enumeration vulnerability in the password reset page. The affected versions are before version 8.5.10, and from version 8.6.0 prior to 8.13....
Atlassian Jira
Atlassian Data Center
Atlassian Jira Server
356
VMScore
CVE-2020-29451
Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to enumerate Jira projects via an Information Disclosure vulnerability in the Jira Projects plugin report page. The affected versions are before version 8.5.11, from version 8.6.0 prior to 8.1...
Atlassian Data Center
Atlassian Jira
Atlassian Jira Server
446
VMScore
CVE-2020-14181
Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the /ViewUserHover.jspa endpoint. The affected versions are before version 7.13.6, from version 8.0.0 prior to 8.5.7, and fro...
Atlassian Data Center
Atlassian Jira
Atlassian Jira Server
3 Github repositories
1 Article
445
VMScore
CVE-2019-20403
The API in Atlassian Jira Server and Data Center before version 8.6.0 allows remote malicious users to determine if a Jira project key exists or not via an information disclosure vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
356
VMScore
CVE-2019-20404
The API in Atlassian Jira Server and Data Center before version 8.6.0 allows authenticated remote malicious users to determine project titles they do not have access to via an improper authorization vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
383
VMScore
CVE-2021-26078
The number range searcher component in Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before version 8.13.6, and from version 8.14.0 before version 8.16.1 allows remote attackers inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vuln...
Atlassian Data Center
Atlassian Jira
Atlassian Jira Server
383
VMScore
CVE-2019-20405
The JMX monitoring flag in Atlassian Jira Server and Data Center before version 8.6.0 allows remote malicious users to turn the JMX monitoring flag off or on via a Cross-site request forgery (CSRF) vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »