CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gliffy: >> Gliffy >> 2.0.1 Security Vulnerabilities

CVE-2012-2928

The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to read arbitrary files or cause a denial of service (resource consumption) via unspecified vectors.

CVSS Score

6.4

EPSS Score

0.019

Published

2012-05-22

Page 1

Vulnerabilities

Vulnerable Software

Gliffy: >> Gliffy >> 2.0.1 Security Vulnerabilities

Products

Pricing

Contact Us