cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-39115,https://securityvulnerability.io/vulnerability/CVE-2021-39115,Server-Side Template Injection in Atlassian Jira Service Management Server and Data Center,"The server-side template injection vulnerability in Atlassian Jira Service Management Server and Data Center enables remote attackers with Jira Administrators access to execute arbitrary Java code or run arbitrary system commands through the Email Template feature. This flaw affects versions prior to 4.13.9 and those between 4.14.0 and 4.18.0, exposing the application to potential security breaches.",Atlassian,"Jira Service Desk Server,Jira Service Desk Data Center",7.2,HIGH,0.0024800000246614218,false,,false,false,true,2021-09-07T09:03:35.000Z,true,false,false,,2021-09-01T23:15:00.000Z,0
CVE-2020-14166,https://securityvulnerability.io/vulnerability/CVE-2020-14166,Cross-Site Scripting Vulnerability in Jira Service Desk Server and Data Center,"A vulnerability in Jira Service Desk Server and Data Center prior to version 4.10.0 allows remote attackers with project administrator privileges to exploit a cross-site scripting (XSS) flaw. This occurs when an attacker uploads a malicious HTML file, enabling them to inject arbitrary HTML or JavaScript within the customer portal. The result can lead to serious implications for impacted users, including the potential for data theft or session hijacking.",Atlassian,Jira Service Desk Server And Data Center,4.8,MEDIUM,0.0028299998957663774,false,,false,false,false,,,false,false,,2020-07-01T00:00:00.000Z,0
CVE-2019-15003,https://securityvulnerability.io/vulnerability/CVE-2019-15003,Authorization Bypass Vulnerability in Atlassian Jira Service Desk Products,"An authorization bypass vulnerability exists in Atlassian Jira Service Desk Server and Data Center, allowing remote attackers with portal access to exploit this weakness. Attackers can gain unauthorized visibility into arbitrary issues within Jira Service Desk projects. This exploit can be triggered if the 'Anyone can email the service desk or raise a request in the portal' setting is enabled, facilitating an unauthorized granting of portal access. Appropriate measures should be taken to mitigate this vulnerability and protect sensitive project information.",Atlassian,"Jira Service Desk Server,Jira Service Desk Data Center",5.3,MEDIUM,0.002950000111013651,false,,false,false,false,,,false,false,,2019-11-07T00:00:00.000Z,0
CVE-2019-15004,https://securityvulnerability.io/vulnerability/CVE-2019-15004,Path Traversal Vulnerability in Atlassian Jira Service Desk Server and Data Center,"A path traversal vulnerability in Atlassian Jira Service Desk Server and Data Center allows remote attackers with portal access to manipulate URLs in a way that lets them view issues they should not have access to in Jira Service Desk projects. Specifically, when the configuration setting permitting all users to email or raise requests is enabled, it becomes possible for an attacker to gain portal access and exploit this vulnerability.",Atlassian,"Jira Service Desk Server,Jira Service Desk Data Center",7.5,HIGH,0.0036800000816583633,false,,false,false,false,,,false,false,,2019-11-07T00:00:00.000Z,0
CVE-2019-14994,https://securityvulnerability.io/vulnerability/CVE-2019-14994,Path Traversal Vulnerability in Atlassian Jira Service Desk Server and Data Center,"The Customer Context Filter in Atlassian Jira Service Desk Server and Data Center prior to specific versions is susceptible to a path traversal vulnerability. This flaw allows remote attackers, who gain portal access, to view sensitive issues in Jira Service Desk projects. If the setting 'Anyone can email the service desk or raise a request in the portal' is enabled, attackers can exploit this vulnerability to escalate their privileges and access confidential information. This presents significant security risks, necessitating prompt updates and mitigation measures.",Atlassian,"Jira Service Desk Server,Jira Service Desk Data Center",7.5,HIGH,0.002580000087618828,false,,false,false,false,,,false,false,,2019-09-19T15:15:00.000Z,0