Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / atlassian

atlassian

468 tracked vulnerabilities.

CVE-2018-13398 MEDIUM

Atlassian Crucible and Fisheye < 4.5.4 - Cross-Site Request Forgery in Administrative Smart-Commits Resource

CVE-2018-13395 MEDIUM

Atlassian Jira < 7.6.8, 7.7.0-7.7.5, 7.8.0-7.8.5, 7.9.0-7.9.3, 7.10.0-7.10.3 - Cross-Site Scripting in Epic Colour Field

CVE-2018-13391 MEDIUM

Atlassian Jira < 7.6.8, 7.7.0-7.7.4, 7.8.0-7.8.4, 7.9.0-7.9.2, 7.10.0-7.10.2, 7.11.0-7.11.1 - Email Address Exposure

CVE-2018-13394 MEDIUM

Atlassian Questions for Confluence < 2.6.6 - Cross-Site Request Forgery via acceptAnswer Resource

CVE-2018-13393 MEDIUM

Atlassian Questions for Confluence < 2.6.6 - Cross-Site Request Forgery via convertCommentToAnswer

CVE-2018-13392 MEDIUM

Atlassian Crucible and Fisheye < 4.6.0 - Cross-Site Scripting via Linked Issue Keys

CVE-2018-13390 MEDIUM

cloudtoken 0.1.1-0.1.23 - Unauthenticated AWS Credential Exposure via Network Daemon Access

CVE-2018-13386 HIGH

Sourcetree for Windows <2.6.9 - Command Injection

CVE-2018-13385 CRITICAL

Sourcetree for macOS <2.7.6 - Command Injection

CVE-2018-5232 MEDIUM

Atlassian Jira <7.6.7, >7.7.0-7.10.1 - XSS

CVE-2018-5229 MEDIUM

Atlassian Universal Plugin Manager <2.22.9 - XSS

CVE-2018-13387 MEDIUM

Atlassian JIRA Server <7.6.7, 7.7.0-7.7.4, 7.8.0-7.8.4, 7.9.0-7.9.2, 7.10.0-7.10.1 - Stored XSS via IncomingMailServers

CVE-2018-13389 MEDIUM

Atlassian Confluence < 6.6.1 - Web Content Spoofing via RDF+XML Attachment

CVE-2018-13388 MEDIUM

Atlassian Crucible and Fisheye < 4.5.3 - Stored Cross-Site Scripting via Review Attachment

CVE-2018-1000617 HIGH

Atlassian Floodlight Controller <1.2 - DoS

CVE-2018-5231 HIGH

Atlassian Jira <7.6.6, <7.7.4, <7.8.4, <7.9.2 - DoS

CVE-2018-5230 MEDIUM NUCLEI

Atlassian Jira <7.6.6, <7.7.0-7.7.4, <7.8.0-7.8.4, <7.9.0-7.9.2 - XSS

CVE-2018-5226 HIGH

Sourcetree for Windows <2.5.5.0 - Command Injection

CVE-2018-5228 MEDIUM

Atlassian Fisheye/Crucible <4.5.3 - XSS

CVE-2018-5227 MEDIUM

Atlassian Application Links <5.4.4 - XSS

CVE-2018-5224 HIGH

Bamboo 2.7.0-6.3.2 and 6.4.0 - Authenticated Remote Code Execution via Mercurial Repository URI

CVE-2018-5223 HIGH

Fisheye/Crucible <4.4.6, <4.5.3 - RCE

CVE-2018-5225 CRITICAL

Atlassian Bitbucket 4.13.0-5.8.1 - Authenticated Remote Code Execution via Symbolic Link

CVE-2017-18113 HIGH

Jira Server and Data Center < 8.18.1 - Remote Code Execution via Malicious Workflow Import

CVE-2017-18112 MEDIUM

Atlassian Fisheye < 4.8.3 - Unauthenticated HTTP Password Exposure via Logging Feature

Previous Page 14 of 19 Next

Products

jira 142 jira_server 135 jira_data_center 79 crucible 52 fisheye 52 confluence_server 49 jira_software_data_center 39 data_center 38 confluence_data_center 36 bamboo 24 crowd 24 bitbucket 20 confluence 19 jira_service_management 16 sourcetree 15 jira_align 13 jira_service_desk 12 application_links 7 Atlassian Fisheye and Crucible 5 hipchat 5 agiloft 4 floodlight 4 Bamboo 3 bitbucket_data_center 3 companion 3 hipchat_server 3 questions_for_confluence 3 universal_plugin_manager 3 Atlassian Crucible 2 Bamboo Data Center 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy