Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

atlassian jira server 8.13.3 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv3

CVE-2020-36231

Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnerability. The affected versions are before version 8.5.10, and from version 8...
Atlassian JiraAtlassian Jira Data CenterAtlassian Jira Data Center 8.13.3Atlassian Jira ServerAtlassian Jira Server 8.13.3Atlassian Jira Software Data Center
6.1
CVSSv3

CVE-2020-36236

Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version...
Atlassian JiraAtlassian Jira Data CenterAtlassian Jira ServerAtlassian Jira Software Data Center
4.8
CVSSv3

CVE-2020-36234

Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view. The affected versions are before version 8.5.11, from version 8.6.0 prior to 8....
Atlassian Data CenterAtlassian JiraAtlassian Jira Data CenterAtlassian Jira Server
5.3
CVSSv3

CVE-2021-26069

Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote malicious users to download temporary files and enumerate project keys via an Information Disclosure vulnerability in the /rest/api/1.0/issues/{id}/ActionsAndOperations API endpoint. The affec...
Atlassian Data CenterAtlassian JiraAtlassian Jira Data CenterAtlassian Jira Server
7.2
CVSSv3

CVE-2021-26070

Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to evade behind-the-firewall protection of app-linked resources via a Broken Authentication vulnerability in the `makeRequest` gadget resource. The affected versions are before version 8.13.3,...
Atlassian Data CenterAtlassian JiraAtlassian Jira Server
4.3
CVSSv3

CVE-2020-29451

Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to enumerate Jira projects via an Information Disclosure vulnerability in the Jira Projects plugin report page. The affected versions are before version 8.5.11, from version 8.6.0 prior to 8.1...
Atlassian Data CenterAtlassian JiraAtlassian Jira Server
5.3
CVSSv3

CVE-2020-29453

The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Center before version 8.5.11, from 8.6.0 prior to 8.13.3, and from 8.14.0 prior to 8.15.0 allowed unauthenticated remote malicious users to read arbitrary files within WEB-INF and META-INF directories via a...
Atlassian Data CenterAtlassian Jira Data CenterAtlassian Jira Server
5.3
CVSSv3

CVE-2019-20101

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote malicious users to view whitelist rules via a Broken Access Control vulnerability in the /rest/whitelist/<version>/check endpoint. The affected versions are before version 8.13.3, and from ver...
Atlassian Data CenterAtlassian Data Center 8Atlassian JiraAtlassian Jira 8
Preferred Score:
CVSSv4
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
privilegeCVE-2025-43967XSSadeptlanguageCVE-2024-42699CVE-2025-1732pritunlpritunl-clientCVE-2025-31201men salon management systemlocalCVE-2025-24071CVE-2025-43973
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook