Atlassian : Security vulnerabilities, CVEs published in 2014

CVE-2014-2314

Public exploit

Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors.

Max CVSS

4.3

EPSS Score

94.05%

Published

2014-03-09

Updated

2015-07-29

CVE-2014-2313

Directory traversal vulnerability in the Importers plugin in Atlassian JIRA before 6.0.5 allows remote attackers to create arbitrary files via unspecified vectors.

Max CVSS

4.3

EPSS Score

0.12%

Published

2014-03-09

Updated

2014-03-10

Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allows remote attackers to hijack the authentication of administrators for requests that logout the user via a comment.

Max CVSS

6.8

EPSS Score

0.75%

Published

2014-05-13

Updated

2022-05-01

Atlassian : Security Vulnerabilities, CVEs, Published In 2014

CVE-2014-2314

CVE-2014-2313

CVE-2012-6342