Jira

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:atlassian:jira:*:*:enterprise:*:*:*:*:*

part: a version: * update: *

VendorAtlassian (8acde0d4-2b83-5bd8-8d3f-60d59e0b022e)
ProductJira (c2c85791-1e35-5790-bb88-4fa1e2e6d723)
Editionenterprise
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2007-6619 vulnerable 2026-06-03 14:28:30.082008 Details available
The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language.
Published: 2008-01-03T23:00:00.000Z
Updated: 2024-08-07T16:11:06.152Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2007-6618 vulnerable 2026-06-03 14:28:30.081697 Details available
JIRA Enterprise Edition before 3.12.1 allows remote attackers to delete another user's shared filter via a modified filter ID.
Published: 2008-01-03T23:00:00.000Z
Updated: 2024-08-07T16:11:06.097Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2007-6617 vulnerable 2026-06-03 14:28:30.081336 Details available
Cross-site scripting (XSS) vulnerability in 500page.jsp in JIRA Enterprise Edition before 3.12.1 allows remote attackers to inject arbitrary web script or HTML, which is not properly handled when generating error messages, as demonstrated by input originally sent in the URI to secure/CreateIssue. NOTE: some of these details are obtained from third party information.
Published: 2008-01-03T23:00:00.000Z
Updated: 2024-08-07T16:11:06.154Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.