Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-36662

The TechTime User Management components for Atlassian products allow stored XSS on the Bulk User Actions page. This affects User Management for Jira 2.0.0 through 2.17.1, User Management for Confluence 2.0.0 through 2.15.24, and User Management for Bitbucket 2.2.2 through 2.15.24.

  • Published: Jun 26, 2023
  • Updated: Jul 7, 2023
  • CVE: CVE-2023-36662
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.4
  • AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
techtime / user_management 2.2.2 2.15.24.x
techtime / user_management 2.0.0 2.15.24.x
techtime / user_management 2.0.0 2.17.1.x