Vulnerabilities > Gliffy > Gliffy > 2.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-05-22 | CVE-2012-2928 | Permissions, Privileges, and Access Controls vulnerability in multiple products The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for Atlassian Confluence, does not properly restrict the capabilities of third-party XML parsers, which allows remote attackers to read arbitrary files or cause a denial of service (resource consumption) via unspecified vectors. | 6.4 |