Computer Security
[EN] securityvulns.ru no-pyccku


CVECVE-2015-5603
StatusCandidate
DescriptionThe HipChat for JIRA plugin before 6.30.0 for Atlassian JIRA allows remote authenticated users to execute arbitrary Java code via unspecified vectors, related to "Velocity Template Injection Vulnerability."
Severity
Medium
CVSS score6,5
CVSS vector(AV:N/AC:L/Au:S/C:P/I:P/A:P)
PhaseAssigned (20.07.2015)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5603
ReferencesBUGTRAQ : 20150902 CVE-2015-5603: JIRA and the HipChat For JIRA plugin - Velocity Template Injection
 MISC : http://packetstormsecurity.com/files/133401/Jira-H...
 CONFIRM : https://confluence.atlassian.com/jira/jira-and-hip...
SecurityVulns:Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod