Vulnerabilities > Atlassian > Hipchat Server

DATE CVE VULNERABILITY TITLE RISK
2017-11-27 CVE-2017-14585 Server-Side Request Forgery (SSRF) vulnerability in Atlassian Hipchat Data Center and Hipchat Server
A Server Side Request Forgery (SSRF) vulnerability could lead to remote code execution for authenticated administrators.
network
low complexity
atlassian CWE-918
7.2
2017-05-05 CVE-2017-8080 Unrestricted Upload of File with Dangerous Type vulnerability in Atlassian Hipchat Server
Atlassian Hipchat Server before 2.2.4 allows remote authenticated users with user level privileges to execute arbitrary code via vectors involving image uploads.
network
low complexity
atlassian CWE-434
8.8
2017-04-14 CVE-2017-7357 Unrestricted Upload of File with Dangerous Type vulnerability in Atlassian Hipchat Server 2.2.0/2.2.1/2.2.2
Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file.
network
low complexity
atlassian CWE-434
critical
9.1