Loading...

Log in Skip to main content Skip to sidebar

Loading…

Dashboards
Projects
Issues

Give feedback to Atlassian
Help
Log In

Export - CSV (All fields)

Export - CSV (Current fields)

Choose a delimiter

Comma (,)

Semicolon (;)

Vertical bar (|)

Caret (^)

XWIKI-20854
Reflected XSS in the create document form if name validation is enabled
XWIKI-20852
Groovy jobs check the wrong author, allowing remote code execution
XWIKI-20851
CSRF in the job scheduler
XWIKI-20849
CSRF privilege escalation/RCE via the create action
XWIKI-20848
Velocity execution without script right through VelocityCode property
XWIKI-20847
Velocity execution without script right through VelocityWiki property
XWIKI-20818
Cookies are sent to external images in rendered diff (and server side request forgery)
XWIKI-20817
The diff displays deleted revisions without additional right check
XWIKI-20746
Privilege escalation (PR) from account through Menu.UIExtensionSheet
XWIKI-20715
Arbitrary server side file writing from account through office converter
XWIKI-20685
No extra right check in script API when accessing deleted documents
XWIKI-20684
Comments of deleted documents can be viewed through REST API
XWIKI-20625
Velocity execution without script right through tree macro
XWIKI-20624
Privilege escalation from script right to programming right through title displayer
XWIKI-20611
Privilege escalation (PR) from account through like LiveTableResults
XWIKI-20610
Privilege escalation (PR) from account through NotificationRSSService
XWIKI-20594
Upgrading doesn't prevent exploiting vulnerable XWiki documents
XWIKI-20524
Privilege escalation (PR) from edit right to programming right through icon themes
XWIKI-20457
Privilege escalation (PR) from view right via SkinsCode.XWikiSkinsSheet
XWIKI-20456
Privilege escalation (PR) from view right on XWiki.ClassSheet
XWIKI-20449
Server side request forgery (SSRF) with the Office Viewer
XWIKI-20423
Privilege escalation (PR)/RCE from account through AWM view sheet
XWIKI-20421
Privilege escalation (PR)/RCE from account through Invitation subject/message
XWIKI-20394
Async and display macro allow displaying and interacting with any document in restricted mode
XWIKI-20386
CSRF privilege escalation/RCE via the edit action
XWIKI-20385
Privilege escalation/RCE via the edit action
XWIKI-20373
Privilege escalation via properties with wiki syntax that are executed with the wrong author
XWIKI-20327
Privilege escalation (PR) from account through XWiki syntax injection in cleaned HTML macro
XWIKI-20313
Privilege escalation (PR) from account through UIX and cleaned HTML macros
XWIKI-20306
Privilege escalation (PR) from account through IncludedDocuments panel
XWIKI-20297
Privilege escalation (PR) from view right on WikiManager.DeleteWiki
XWIKI-20295
Privilege escalation (PR) from account through XWiki.SchedulerJobSheet
XWIKI-20294
Privilege escalation (PR) from account through PanelsCode.ApplicationsPanelConfigurationSheet
XWIKI-20293
Privilege escalation (PR) from account through IncludedPagesDocumentInformation panel
XWIKI-20291
CSRF RCE vulnerability in the logger level configuration
XWIKI-20290
Stored XSS via the user account and displaycontent/rendercontent template
XWIKI-20287
Privilege escalation (PR) from view right on XWiki.Notifications.Code.LegacyNotificationAdministration
XWIKI-20285
Privilege escalation (PR) from view right via Invitation application
XWIKI-20283
Privilege escalation (PR) from view right using Invitation.InvitationCommon
XWIKI-20281
Privilege escalation (PR) from account through TipsPanel
XWIKI-20280
Privilege escalation (PR) from account through FlamingoThemesCode.WebHomeSheet
XWIKI-20279
Privilege escalation (PR) from view right on FlamingoThemesCode.WebHome
XWIKI-20276
Stored XSS via the timezone displayer in user profile
XWIKI-20275
Privilege escalation (PR) from view right on XWiki.AttachmentSelector
XWIKI-20268
Privilege escalation (PR) from account through AdminTemplatesSheet
XWIKI-20267
Privilege escalation (PR) from account through AdminImportSheet/importinline.vm
XWIKI-20261
Privilege escalation (PR) from account/view through AdminFieldsDisplaySheet and admin.vm
XWIKI-20260
Privilege escalation (PR) from account/view through VFS Tree macro
XWIKI-20259
Privilege escalation (PR) from account/view through Notification Preferences Macros
XWIKI-20258
Privilege escalation (PR) from account/view through the Legacy ActivityMacro

Refresh results

<< Previous 1 2

{"errorMessages":["You are not authorised to perform this operation. Please log in."],"errors":{}}

[{"id":-1,"name":"My open issues","jql":"assignee = currentUser() AND resolution = Unresolved order by updated DESC","isSystem":true,"sharePermissions":[],"requiresLogin":true},{"id":-2,"name":"Reported by me","jql":"reporter = currentUser() order by created DESC","isSystem":true,"sharePermissions":[],"requiresLogin":true},{"id":-4,"name":"All issues","jql":"order by created DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-5,"name":"Open issues","jql":"resolution = Unresolved order by priority DESC,updated DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-9,"name":"Done issues","jql":"statusCategory = Done order by updated DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-3,"name":"Viewed recently","jql":"issuekey in issueHistory() order by lastViewed DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-6,"name":"Created recently","jql":"created >= -1w order by created DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-7,"name":"Resolved recently","jql":"resolutiondate >= -1w order by updated DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false},{"id":-8,"name":"Updated recently","jql":"updated >= -1w order by updated DESC","isSystem":true,"sharePermissions":[],"requiresLogin":false}]

0.3

0

Atlassian Jira Project Management Software
About Jira
Report a problem

Powered by a free Atlassian Jira open source license for XWiki.org. Try Jira - bug tracking software for your team.