Atlassian Jira is a defect tracking management system from Atlassian Australia. A code injection vulnerability exists in Atlassian Jira, which stems from Atlassian Jira server and data center versions allowing remote attackers to modify various resources through a cross-site request forgery (CSRF) vulnerability, following a disclosure vulnerability in the reference header, which exposes the user’s CSRF token. No detailed vulnerability details are currently available.
CPE | Name | Operator | Version |
---|---|---|---|
Atlassian Jira | lt | 8.5.10 | |
Atlassian Jira >=8.6.0, | lt | 8.13.2 |