Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atlassian jira data center vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-20409
The way in which velocity templates were used in Atlassian Jira Server and Data Center prior to version 8.8.0 allowed remote malicious users to gain remote code execution if they were able to exploit a server side template injection vulnerability.
Atlassian Jira
Atlassian Jira Software Data Center
445
VMScore
CVE-2019-20898
Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to access sensitive information without being authenticated in the Global permissions screen. The affected versions are before version 8.8.0.
Atlassian Jira
Atlassian Jira Software Data Center
356
VMScore
CVE-2019-20402
Support zip files in Atlassian Jira Server and Data Center before version 8.6.0 could be downloaded by a System Administrator user without requiring the user to re-enter their password via an improper authorization vulnerability.
Atlassian Jira
Atlassian Jira Software Data Center
445
VMScore
CVE-2019-20403
The API in Atlassian Jira Server and Data Center before version 8.6.0 allows remote malicious users to determine if a Jira project key exists or not via an information disclosure vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
356
VMScore
CVE-2019-20404
The API in Atlassian Jira Server and Data Center before version 8.6.0 allows authenticated remote malicious users to determine project titles they do not have access to via an improper authorization vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
383
VMScore
CVE-2019-20405
The JMX monitoring flag in Atlassian Jira Server and Data Center before version 8.6.0 allows remote malicious users to turn the JMX monitoring flag off or on via a Cross-site request forgery (CSRF) vulnerability.
Atlassian Jira Server
Atlassian Jira Data Center
383
VMScore
CVE-2021-39116
Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to impact the application's availability via a Denial of Service (DoS) vulnerability in the GIF Image Reader component. The affected versions are before version 8.13.14, and from version ...
Atlassian Jira Data Center
Atlassian Jira Server
383
VMScore
CVE-2020-14164
The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote malicious users to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by pasting javascript code into the editor field.
Atlassian Jira
Atlassian Jira Software Data Center
445
VMScore
CVE-2020-14165
The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote malicious users to obtain information about custom project avatars names via an Improper authorization vulnerability.
Atlassian Jira
Atlassian Jira Software Data Center
383
VMScore
CVE-2020-14169
The quick search component in Atlassian Jira Server and Data Center prior to 8.9.1 allows remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability
Atlassian Jira
Atlassian Jira Software Data Center
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »