2 matches found
CVE-2017-18033
The CVE-2017-18033 issue affects Atlassian Jira up to version 7.6.1 via the Jira-importers-plugin. A CSRF flaw can allow an unauthenticated, remote attacker to create new projects and abort an external system import, by convincing a user to click a crafted URL. Mitigation: upgrade Jira to 7.6.1 o...
Various Cross-site request forgery(CSRF) vulnerabilities in the Jira-importers-plugin - CVE-2017-18033
The Jira-importers-plugin in Atlassian Jira before version 7.6.1 allows remote attackers to create new projects and abort an executing external system import via various Cross-site request forgery CSRF vulnerabilities...