CVSS: 5.4EPSS: 0%CPEs: 14EXPL: 0CVE-2018-20239
https://notcve.org/view.php?id=CVE-2018-20239
30 Apr 2019 — Application Links before version 5.0.11, from version 5.1.0 before 5.2.10, from version 5.3.0 before 5.3.6, from version 5.4.0 before 5.4.12, and from version 6.0.0 before 6.0.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the applinkStartingUrl parameter. The product is used as a plugin in various Atlassian products where the following are affected: Confluence before version 6.15.2, Crucible before version 4.7.0, Crowd before version 3.4.3... • https://ecosystem.atlassian.net/browse/APL-1373 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-18110
https://notcve.org/view.php?id=CVE-2017-18110
29 Mar 2019 — The administration backup restore resource in Atlassian Crowd before version 3.0.2 and from version 3.1.0 before version 3.1.1 allows remote attackers to read files from the filesystem via a XXE vulnerability. El recurso de administración de copias de memoria en Atlassian Crowd, en versiones anteriores a la 3.0.2 y desde la 3.1.1, permite a los atacantes remotos leer archivos desde el sistema de archivos mediante una vulnerabilidad de XEE (XML External Entity). • https://jira.atlassian.com/browse/CWD-5070 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-18109
https://notcve.org/view.php?id=CVE-2017-18109
29 Mar 2019 — The login resource of CrowdId in Atlassian Crowd before version 3.0.2 and from version 3.1.0 before version 3.1.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect. El recurso de inicio de sesión de Crowdld en Atlassian Crowd, en versiones anteriores a la 3.0.2 y desde la 3.1.0 hasta la 3.1.1, permite a los atacantes remotos redirigir a los usuarios a otro sitio web que pueden utilizar como parte de la realización... • https://jira.atlassian.com/browse/CWD-5071 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 7.2EPSS: 1%CPEs: 1EXPL: 0CVE-2017-18108
https://notcve.org/view.php?id=CVE-2017-18108
29 Mar 2019 — The administration SMTP configuration resource in Atlassian Crowd before version 2.10.2 allows remote attackers with administration rights to execute arbitrary code via a JNDI injection. El recurso de configuración de administración SMTP en Atlassian Crowd, en versiones anteriores a la 2.10.2, permite a los atacantes remotos con derechos de administrador ejecutar código arbitrario mediante una inyección JNDI. • https://jira.atlassian.com/browse/CWD-5062 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-18106
https://notcve.org/view.php?id=CVE-2017-18106
29 Mar 2019 — The identifier_hash for a session token in Atlassian Crowd before version 2.9.1 could potentially collide with an identifier_hash for another user or a user in a different directory, this allows remote attackers who can authenticate to Crowd or an application using Crowd for authentication to gain access to another user's session provided they can make their identifier hash collide with another user's session identifier hash. Un hash de identificación para un token de sesión en Atlassian Crowd, en versiones... • https://jira.atlassian.com/browse/CWD-5061 • CWE-287: Improper Authentication •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-18105
https://notcve.org/view.php?id=CVE-2017-18105
29 Mar 2019 — The console login resource in Atlassian Crowd before version 3.0.2 and from version 3.1.0 before version 3.1.1 allows remote attackers, who have previously obtained a user's JSESSIONID cookie, to gain access to some of the built-in and potentially third party rest resources via a session fixation vulnerability. El recurso de inicio de sesión en consola de Atlassian Crowd, en versiones anteriores a la 3.0.2, y desde la 3.1.0 hasta la 3.1.1, permite a los atacantes que hayan obtenido previamente la cookie JSE... • https://jira.atlassian.com/browse/CWD-5072 • CWE-384: Session Fixation •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2018-20238
https://notcve.org/view.php?id=CVE-2018-20238
13 Feb 2019 — Various rest resources in Atlassian Crowd before version 3.2.7 and from version 3.3.0 before version 3.3.4 allow remote attackers to authenticate using an expired user session via an insufficient session expiration vulnerability. Varios recursos REST en Atlassian Crowd, en versiones anteriores a la 3.2.7 y desde la versión 3.3.0 antes de la 3.3.4, podrían permitir que los atacantes remotos se autentiquen mediante una sesión de usuario caducada mediante una vulnerabilidad de expiración de sesión insuficiente... • http://www.securityfocus.com/bid/107036 • CWE-384: Session Fixation •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10740
https://notcve.org/view.php?id=CVE-2016-10740
29 Jan 2019 — Various resources in Atlassian Crowd before version 2.10.1 allow remote attackers with administration rights to learn the passwords of configured LDAP directories by examining the responses to requests for these resources. Varios recursos en Atlassian Crowd, en versiones anteriores a la 2.10.1, permiten a los atacantes remotos con derechos de administrador averiguar las contraseñas de los directorios LDAP configurados, analizando las respuestas a las peticiones para dichos recursos. • https://jira.atlassian.com/browse/CWD-5060 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-16858
https://notcve.org/view.php?id=CVE-2017-16858
31 Jan 2018 — The 'crowd-application' plugin module (notably used by the Google Apps plugin) in Atlassian Crowd from version 1.5.0 before version 3.1.2 allowed an attacker to impersonate a Crowd user in REST requests by being able to authenticate to a directory bound to an application using the feature. Given the following situation: the Crowd application is bound to directory 1 and has a user called admin and the Google Apps application is bound to directory 2, which also has a user called admin, it was possible to auth... • https://jira.atlassian.com/browse/CWD-5009 • CWE-287: Improper Authentication CWE-863: Incorrect Authorization •
CVSS: 9.8EPSS: 3%CPEs: 3EXPL: 0CVE-2016-6496 – Crowd LDAP Java Object Injection
https://notcve.org/view.php?id=CVE-2016-6496
31 Oct 2016 — The LDAP directory connector in Atlassian Crowd before 2.8.8 and 2.9.x before 2.9.5 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka LDAP entry poisoning. El conector de directorio LDAP en Atlassian Crowd en versiones anteriores a 2.8.8 y 2.9.x en versiones anteriores a 2.9.5 permite a atacantes remotos ejecutar código arbitrario a través de un atributo LDAP con un objeto Java serializado manipulado, también conocido como envenenamiento de en... • http://www.securityfocus.com/archive/1/539655/100/0/threaded • CWE-20: Improper Input Validation •