2 matches found
CVE-2017-18042
The update user administration resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to modify user data including passwords via a Cross-site request forgery CSRF vulnerability...
CVE-2017-18042
CVE-2017-18042 concerns Atlassian Bamboo prior to 6.3.1. The vulnerability is a CSRF in the update user administration resource, allowing remote attackers to modify user data, including passwords. Affected: Bamboo versions before 6.3.1. Root cause: CSRF in the update user admin endpoint. Impact: ...