atlassian

468 tracked vulnerabilities.

CVE-2018-20827 MEDIUM
Jira 7.0.0-7.13.0 - Cross-Site Scripting via Activity Stream Gadget Country Parameter
Aug 09, 2019
CVSS 5.4
EPSS 0.00
CVE-2018-20826 MEDIUM
Jira < 7.12.3 - Authenticated Incorrect Authorization in Inline-Create REST Resource
Aug 09, 2019
CVSS 4.3
EPSS 0.00
CVE-2018-20824 MEDIUM NUCLEI
Jira < 7.13.1 - Cross-Site Scripting via WallboardServlet cyclePeriod Parameter
May 03, 2019
CVSS 6.1
EPSS 0.11
CVE-2018-20239 MEDIUM
Atlassian Application Links < 5.0.11 - XSS
Apr 30, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-20236 HIGH
Sourcetree for Windows <3.0.10 - Command Injection
Mar 08, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-20235 HIGH
Atlassian Sourcetree <3.0.15 - Command Injection
Mar 08, 2019
CVSS 8.8
EPSS 0.05
CVE-2018-20234 HIGH
Atlassian Sourcetree <3.1.1 - Command Injection
Mar 08, 2019
CVSS 8.8
EPSS 0.04
CVE-2018-20241 MEDIUM
Atlassian Fisheye/Crucible <4.7.0 - XSS
Feb 20, 2019
CVSS 5.4
EPSS 0.00
CVE-2018-20240 MEDIUM
Atlassian Fisheye/Crucible <4.7.0 - XSS
Feb 20, 2019
CVSS 4.8
EPSS 0.00
CVE-2018-20238 HIGH
Atlassian Crowd <3.2.7, >3.3.0-<3.3.4 - Auth Bypass
Feb 13, 2019
CVSS 8.1
EPSS 0.00
CVE-2018-20237 MEDIUM
Atlassian Confluence <6.13.1 - Info Disclosure
Feb 13, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-20232 MEDIUM
Atlassian Jira <7.6.11, >7.7.0-7.13.1 - XSS
Feb 13, 2019
CVSS 5.4
EPSS 0.00
CVE-2018-13404 MEDIUM
Atlassian Jira < 7.6.10 - SSRF
Feb 13, 2019
CVSS 4.1
EPSS 0.00
CVE-2018-13403 MEDIUM
Atlassian Jira < 7.6.10, 7.7.0-7.12.3 - Stored Cross-Site Scripting via Saved Filter Name
Feb 13, 2019
CVSS 5.4
EPSS 0.00
CVE-2018-20233 MEDIUM
Atlassian Universal Plugin Manager <2.22.14 - SSRF
Jan 18, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-1000423 HIGH
Jenkins Crowd <2.0.0 - Info Disclosure
Jan 09, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-1000422 MEDIUM
Jenkins Crowd 2 Integration Plugin < 2.0.0 - Server-Side Request Forgery via Connection Test
Jan 09, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-1000419 MEDIUM
Jenkins HipChat Plugin <2.2.0 - Auth Bypass
Jan 09, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-1000418 HIGH
Jenkins HipChat Plugin <2.2.0 - Auth Bypass
Jan 09, 2019
CVSS 8.8
EPSS 0.00
CVE-2018-13397 HIGH
Sourcetree <3.0.0 - Command Injection
Nov 05, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-13396 HIGH
Sourcetree <3.0.0 - Command Injection
Nov 05, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-13402 MEDIUM
Atlassian Jira < 7.6.9 - Open Redirect
Oct 23, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-13401 MEDIUM
Atlassian Jira Open Redirect via XsrfErrorAction Resource
Oct 23, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-13400 MEDIUM
Atlassian Jira < 7.6.9 - Improper Privilege Management
Oct 23, 2018
CVSS 4.7
EPSS 0.00
CVE-2018-13399 HIGH
Atlassian Crucible and Fisheye < 4.6.1 - Privilege Escalation via Weak Installation Directory Permissions
Oct 16, 2018
CVSS 7.8
EPSS 0.00
Products
jira 142 jira_server 135 jira_data_center 79 crucible 52 fisheye 52 confluence_server 49 jira_software_data_center 39 data_center 38 confluence_data_center 36 bamboo 24 crowd 24 bitbucket 20 confluence 19 jira_service_management 16 sourcetree 15 jira_align 13 jira_service_desk 12 application_links 7 Atlassian Fisheye and Crucible 5 hipchat 5 agiloft 4 floodlight 4 Bamboo 3 bitbucket_data_center 3 companion 3 hipchat_server 3 questions_for_confluence 3 universal_plugin_manager 3 Atlassian Crucible 2 Bamboo Data Center 2
Quick Filters
Critical CVEs With Exploits In CISA KEV