cve-2011-4822
Vulnerability from cvelistv5
Published
2011-12-15 02:00
Modified
2024-08-07 00:16
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) snippets in a user comment, which is not properly handled in a Confluence page, or (2) the user profile display name, which is not properly handled in a FishEye page.
Impacted products
Vendor Product Version
Show details on NVD website


{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T00:16:34.940Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "fisheye-display-name-xss(71426)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71426"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://jira.atlassian.com/browse/FE-3797"
          },
          {
            "name": "fisheye-comment-xss(71427)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71427"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://jira.atlassian.com/browse/FE-3798"
          },
          {
            "name": "77264",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/77264"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22"
          },
          {
            "name": "46975",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46975"
          },
          {
            "name": "50762",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/50762"
          },
          {
            "name": "77263",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/77263"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-10-24T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) snippets in a user comment, which is not properly handled in a Confluence page, or (2) the user profile display name, which is not properly handled in a FishEye page."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "fisheye-display-name-xss(71426)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71426"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://jira.atlassian.com/browse/FE-3797"
        },
        {
          "name": "fisheye-comment-xss(71427)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71427"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://jira.atlassian.com/browse/FE-3798"
        },
        {
          "name": "77264",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/77264"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22"
        },
        {
          "name": "46975",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46975"
        },
        {
          "name": "50762",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/50762"
        },
        {
          "name": "77263",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/77263"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-4822",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) snippets in a user comment, which is not properly handled in a Confluence page, or (2) the user profile display name, which is not properly handled in a FishEye page."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "fisheye-display-name-xss(71426)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71426"
            },
            {
              "name": "https://jira.atlassian.com/browse/FE-3797",
              "refsource": "CONFIRM",
              "url": "https://jira.atlassian.com/browse/FE-3797"
            },
            {
              "name": "fisheye-comment-xss(71427)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71427"
            },
            {
              "name": "https://jira.atlassian.com/browse/FE-3798",
              "refsource": "CONFIRM",
              "url": "https://jira.atlassian.com/browse/FE-3798"
            },
            {
              "name": "77264",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/77264"
            },
            {
              "name": "http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22",
              "refsource": "CONFIRM",
              "url": "http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22"
            },
            {
              "name": "46975",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46975"
            },
            {
              "name": "50762",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/50762"
            },
            {
              "name": "77263",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/77263"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-4822",
    "datePublished": "2011-12-15T02:00:00",
    "dateReserved": "2011-12-14T00:00:00",
    "dateUpdated": "2024-08-07T00:16:34.940Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-4822\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2011-12-15T03:57:34.433\",\"lastModified\":\"2024-11-21T01:33:03.923\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) snippets in a user comment, which is not properly handled in a Confluence page, or (2) the user profile display name, which is not properly handled in a FishEye page.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en la funcionalidad de perfil de usuario de Atlassian FishEye en versiones anteriores a 2.5.5. Permite a usuarios remotos inyectar codigo de script web o c\u00f3digo HTML de su elecci\u00f3n a trav\u00e9s de (1) \\\"snippets\\\" en un comentario de usuario, que no son manejados apropiadamente en una p\u00e1gina Confluence, o (2) el nombre para mostrar del perfil de usuario, que no es apropiadamente procesado en una p\u00e1gina FishEye.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65DC909F-52E4-492E-8DD5-541CA8EF0DA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AED84F5-8664-4632-81BB-CE8ACF91995B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"287BD1C8-D378-4FA3-ABFD-BC8C35ECDB91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53F57BCA-CF2C-4555-8113-B83081081568\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11DE82E5-27D6-422D-8AE9-E8A0B751C0FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8C4A487-E8F6-418E-9272-FC90A5AD4BD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9052BBA3-D7FE-4F7F-9304-F0FE0B9D41E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8CBCEFF-D3CD-48DD-91D0-3E51C1A6D0BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA0553DC-817F-4666-9BDA-E914980CBA73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E968CFA-4538-4726-994C-60374FBAA18E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A81AD0AE-14AA-432B-877E-E80785016A58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCD765B8-1A7A-49FD-B3E1-A7BECFF21B34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1871F0B-734A-4A41-9F2E-12A5C0A9273B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4E9E953-3167-4E0E-9FE5-12755C8F2227\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D3FA30A-4995-487E-9BD4-D1EBACF83BAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.5.a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87C89AB2-D94F-462D-9F9F-A863C43168F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:1.6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3243C58A-3D11-40A0-8545-4E88640EA50A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E6B17CA-DFC4-4B8F-BADD-D9B2E2B3A1D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD299128-2B6F-436C-A001-0FDCA4F4F476\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BF0F3A4-D1F5-46CD-B304-4E6704FACEED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0CB4216-BE72-40A4-9990-3E3FCF237A5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BEEC659-AD2C-46B5-9C43-846B0C161D91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22428683-5FA7-4159-9599-CCBC3D48FC17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCD7572C-D427-4FF2-A0B9-A09308FA75A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A710A8-14B1-4521-8218-7E877B5E8612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA512020-7A99-4CB9-A4F5-625D3B3CEE8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10FC2876-4E44-46A3-9393-7EDCB3E7118B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31C7041B-C0A4-4B56-AAAF-A9DC5CDA907A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD2BE240-FBAA-40D5-A331-1B92C1AC06A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"174D65AC-FC95-4843-BCA9-5A099720CF97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C0DFDA0-8D43-4742-835B-C1429FC3E954\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A90B31C-3675-4B42-BF20-BA1DEFC43143\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A2E3E19-2936-4A35-ABA3-DCF20B81A3D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8539DA5F-51F4-46B6-BA4E-F4DBD23E02D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E031757C-525F-48FA-A13A-548B60CF5A3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6378292-AF21-4D55-B91B-E1EC118B9434\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1E808FB-EBBC-4409-A139-7AF11D359562\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615D9240-7E40-438E-A16A-2CE15D187DB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF4AD14D-452D-493F-A9EB-E87C88BC7CF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B0CFD4B-8CCE-4928-AF36-7E4FEA9C37C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7D4EA65-22BD-41BF-A2F2-9C3AFE6AAAAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"081BE403-480B-4F8B-832F-3D9D33C546C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08A180D7-FA9A-4F36-9571-04EAD40FA7AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56027DE1-1034-4B2B-BD01-4D9CE56A66ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D67D8010-D25C-4D1E-AFCE-3E38DA467574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76EBF4C8-E718-4F55-B6F3-0C14179E7A59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5104A993-424E-44CE-A859-54707B5FF73E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD591B70-0EB8-4881-8C64-CD86BF7C0990\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"852880EF-9870-4BE5-BA36-D01682757D95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BA208AF-8F62-46F6-91B5-80C867B757C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FEC17DB-89BA-4C24-BE79-6FCB1199CA9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F41AE4F9-EB8C-4975-ABFB-19D91D90ADF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78940DF8-94DA-4725-A5C9-7D0E0B45F067\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87AF8F3A-ECBC-47AE-83C1-C7B838A9184C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC9B4F0C-A9A7-45FA-A2D4-FBFC39B8B173\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:atlassian:fisheye:2.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3347FF5-548E-4D6D-A07D-37872A12DE54\"}]}]}],\"references\":[{\"url\":\"http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/77263\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/77264\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/46975\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/50762\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71426\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71427\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://jira.atlassian.com/browse/FE-3797\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://jira.atlassian.com/browse/FE-3798\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://confluence.atlassian.com/display/FISHEYE/FishEye+and+Crucible+Security+Advisory+2011-11-22\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/77263\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/77264\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/46975\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/50762\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71426\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71427\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://jira.atlassian.com/browse/FE-3797\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://jira.atlassian.com/browse/FE-3798\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.