VYPR

User Export

by Netic

CVEs (3)

  • CVE-2023-27890Apr 14, 2023
    risk 0.00cvss epss 0.01

    The Export User plugin through 2.0 for MyBB allows XSS during the process of an admin generating DSGVO data for a user, via the Custom User Title, Location, or Bio field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

  • CVE-2022-42977Nov 15, 2022
    risk 0.00cvss epss 0.01

    The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system (e.g., an SSH private key) to be…

  • CVE-2022-38367Sep 5, 2022
    risk 0.00cvss epss 0.00

    The Netic User Export add-on before 2.0.6 for Atlassian Jira does not perform authorization checks. This might allow an unauthenticated user to export all users from Jira by making an HTTP request to the affected endpoint.