NotCVE - vendor:"Atlassian" product:"Jira Server" version:"8.13.0"

Page 5 of 43 results (0.004 seconds)

CVSS: 6.1EPSS: 0%CPEs: 6EXPL: 0

CVE-2020-36236

https://notcve.org/view.php?id=CVE-2020-36236

14 Feb 2021 — Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0. Las versiones afectadas de Atlassian Jira Server y Data Center permiten a atacantes remotos inyectar HTML o JavaScript arbitrario por medio de una vulnerabi... • https://jira.atlassian.com/browse/JRASERVER-72015 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

CVE-2020-36231

https://notcve.org/view.php?id=CVE-2020-36231

01 Feb 2021 — Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnerability. The affected versions are before version 8.5.10, and from version 8.6.0 before 8.13.2. çLas versiones afectadas de Atlassian Jira Server y Data Center, permiten a atacantes remotos visualizar los metadatos de las tarjetas a las que no deberían tener acceso por medio de una vulnerabilidad de Insecure Dire... • https://jira.atlassian.com/browse/JRASERVER-72002 • CWE-639: Authorization Bypass Through User-Controlled Key •

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2020-14184

https://notcve.org/view.php?id=CVE-2020-14184

12 Oct 2020 — Affected versions of Atlassian Jira Server allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in Jira issue filter export files. The affected versions are before 8.5.9, from version 8.6.0 before 8.12.3, and from version 8.13.0 before 8.13.1. Las versiones afectadas de Atlassian Jira Server, permiten a atacantes remotos inyectar HTML o JavaScript arbitrario por medio de una vulnerabilidad de tipo Cross-Site Scripting (XSS) en los archivos de exportaci... • https://jira.atlassian.com/browse/JRASERVER-71652 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1...3 4 5