Product:

Jira_data_center

(Atlassian)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 74
Date Id Summary Products Score Patch Annotated
2020-06-30 CVE-2019-20415 Atlassian Jira Server and Data Center in affected versions allows remote attackers to modify logging and profiling settings via a cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.3, and from version 8.0.0 before 8.1.0. Jira, Jira_data_center, Jira_server, Jira_software_data_center 4.3
2020-07-13 CVE-2019-20897 The avatar upload feature in affected versions of Atlassian Jira Server and Data Center allows remote attackers to achieve Denial of Service via a crafted PNG file. The affected versions are before version 8.5.4, from version 8.6.0 before 8.6.2, and from version 8.7.0 before 8.7.1. Jira, Jira_data_center, Jira_server, Jira_software_data_center 6.5
2020-07-13 CVE-2019-20899 The Gadget API in Atlassian Jira Server and Data Center in affected versions allows remote attackers to make Jira unresponsive via repeated requests to a certain endpoint in the Gadget API. The affected versions are before version 8.5.4, and from version 8.6.0 before 8.6.1. Jira, Jira_data_center, Jira_server, Jira_software_data_center 5.3
2020-07-13 CVE-2019-20900 Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the Add Field module. The affected versions are before version 8.7.0. Jira_data_center, Jira_server 4.8