Atlassian Jira 8.14.x < 8.20.10 Server-Side Request Forgery

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is 8.0.x prior to 8.13.22, 8.14.x prior to 8.20.10 or 8.21.x prior to 8.21.4. It is, therefore, affected by a vulnerability allowing a remote, authenticated user including a user who join...

PT-2022-11946 · Atlassian · Jira

Name of the Vulnerable Software and Affected Versions: Atlassian Jira Server and Data Center versions prior to 8.13.21 Atlassian Jira Server and Data Center versions 8.14.0 through 8.20.9 Description: The issue allows authenticated remote attackers to add administrator groups to filter...