Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAtlassianCVELIST:CVE-2017-18107
HistoryDec 17, 2019 - 3:45 a.m.

CVE-2017-18107

2019-12-1703:45:13
atlassian
www.cve.org
3

EPSS

0.001

Percentile

32.4%

JSON

Various resources in the Crowd Demo application of Atlassian Crowd before version 3.1.1 allow remote attackers to modify add, modify and delete users & groups via a Cross-site request forgery (CSRF) vulnerability. Please be aware that the Demo application is not enabled by default.

CNA Affected

[
  {
    "product": "Crowd",
    "vendor": "Atlassian",
    "versions": [
      {
        "lessThan": "3.1.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
symantec 1
nvd 1
cve 1
prion
prion
Cross site request forgery (csrf)
2019-12-17 04:15:00
symantec
symantec
Atlassian Crowd CVE-2017-18107 Cross Site Request Forgery Vulnerability
2019-12-16 00:00:00
nvd
nvd
CVE-2017-18107
2019-12-17 04:15:10
cve
cve
CVE-2017-18107
2019-12-17 04:15:10

EPSS

0.001

Percentile

32.4%

JSON
Related for CVELIST:CVE-2017-18107
prion1symantec1nvd1cve1