Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian fisheye vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2017-9510
The repository changelog resource in Atlassian Fisheye before version 4.4.1 allows remote malicious users to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the start date and end date parameters.
Atlassian Fisheye
6.4
CVSSv2
CVE-2012-2926
Atlassian JIRA prior to 5.0.1; Confluence prior to 3.5.16, 4.0 prior to 4.0.7, and 4.1 prior to 4.1.10; FishEye and Crucible prior to 2.5.8, 2.6 prior to 2.6.8, and 2.7 prior to 2.7.12; Bamboo prior to 3.3.4 and 3.4.x prior to 3.4.5; and Crowd prior to 2.0.9, 2.1 prior to 2.1.2, ...
Atlassian Fisheye
Atlassian Confluence
Atlassian Jira
Atlassian Crucible
Atlassian Crowd
Atlassian Bamboo
Atlassian Confluence Server
1 EDB exploit
4.3
CVSSv2
CVE-2011-4822
Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye prior to 2.5.5 allow remote malicious users to inject arbitrary web script or HTML via (1) snippets in a user comment, which is not properly handled in a Confluence page, or (2) t...
Atlassian Fisheye 2.4.6
Atlassian Fisheye 2.0
Atlassian Fisheye 2.5.1
Atlassian Fisheye 2.1.2
Atlassian Fisheye 2.3.5
Atlassian Fisheye 2.0.1
Atlassian Fisheye 2.1.0
Atlassian Fisheye 2.4.4
Atlassian Fisheye 2.5.4
Atlassian Fisheye 2.3.7
Atlassian Fisheye 2.2.0
Atlassian Fisheye 2.3.2
Atlassian Fisheye 2.4.5
Atlassian Fisheye 2.1.4
Atlassian Fisheye 1.6.3
Atlassian Fisheye 2.1.1
Atlassian Fisheye 1.5.1
Atlassian Fisheye 1.5.3
Atlassian Fisheye 1.6.6
Atlassian Fisheye 2.0.3
Atlassian Fisheye 2.3.8
Atlassian Fisheye 2.5.0
5
CVSSv2
CVE-2010-1870
The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 up to and including 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which allows remote malicious users to modify server-side context objects an...
Apache Struts 2.0.9
Apache Struts 2.0.12
Apache Struts 2.1.0
Apache Struts 2.0.0
Apache Struts 2.0.8
Apache Struts 2.0.7
Apache Struts 2.0.4
Apache Struts 2.1.8.1
Apache Struts 2.1.3
Apache Struts 2.1.2
Apache Struts 2.1.5
Apache Struts 2.0.1
Apache Struts 2.0.2
Apache Struts 2.1.8
Apache Struts 2.0.11.1
Apache Struts 2.0.3
Apache Struts 2.0.14
Apache Struts 2.0.11
Apache Struts 2.1.6
Apache Struts 2.0.5
Apache Struts 2.1.4
Apache Struts 2.0.11.2
2 EDB exploits
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6