1 results (0.002 seconds)
CVSS: 9.0EPSS: 4%CPEs: 1EXPL: 0
CVSS: 9.0EPSS: 4%CPEs: 1EXPL: 0CVE-2021-26068
https://notcve.org/view.php?id=CVE-2021-26068
18 Feb 2021 — An endpoint in Atlassian Jira Server for Slack plugin from version 0.0.3 before version 2.0.15 allows remote attackers to execute arbitrary code via a template injection vulnerability. Un endpoint en el plugin Atlassian Jira Server para Slack desde versiones 0.0.3 anteriores a 2.0.15, permite a atacantes remotos ejecutar código arbitrario por medio de una vulnerabilidad de inyección de plantilla • https://confluence.atlassian.com/jira/jira-server-for-slack-security-advisory-17th-february-2021-1044091690.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •