Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Project Management

Atlassian Jira

Jira Software is built for every member of your software team to plan track and release great software.

Official Site:

https://www.atlassian.com/software/jira

Severity Summary:

Critical: 7 High: 25 Medium: 152 Low: 4
Reference
Title
Severity
CVE-2019-3401
Atlassian Jira Incorrect Authorization Vulnerability
Medium
CVE-2019-3400
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-20824
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-39119
Atlassian Jira Improper Authentication Vulnerability
Medium
CVE-2018-20239
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-20232
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-18039
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-16864
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-18033
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-43952
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-39124
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-43946
Atlassian Jira Improper Authentication Vulnerability
Medium
CVE-2021-43948
Atlassian Jira Incorrect Authorization Vulnerability
Medium
CVE-2021-43941
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-43953
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-43950
Atlassian Jira Improper Authentication Vulnerability
Medium
CVE-2021-43945
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-6618
Atlassian Jira Other Vulnerability
Medium
CVE-2021-39125
Atlassian Jira Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2021-39126
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2021-39127
Atlassian Jira Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2021-41304
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-20826
Atlassian Jira Incorrect Authorization Vulnerability
Medium
No CVE number
Rest API Endpoint Leaked Project Categories Project categories status categories issue link types priorities and resolutions to Unauthorised users
Medium
No CVE number
A user can view the createmeta information of private projects
Medium
CVE-2006-3339
Atlassian Jira Other Vulnerability
Medium
CVE-2007-6617
Atlassian Jira Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-16865
Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability
Medium
CVE-2014-2314
Atlassian Jira Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2019-11588
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Medium