Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-32274 | 1 Ttpsc | 1 The Scheduler | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
The Transition Scheduler add-on 6.5.0 for Atlassian Jira is prone to stored XSS via the project name to the creation function. | |||||
CVE-2018-14383 | 1 Ttpsc | 1 The Scheduler | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
The Transition Technologies "The Scheduler" app 5.1.3 for Jira allows XXE due to a weakly configured/parameterized XML parser. It was fixed in the versions 5.2.1 and 3.3.7 |