3 matches found
Atlassian JIRA 7.13.x < 7.13.6 / 8.x < 8.2.3 / 8.3.x < 8.3.2 Multiple Vulnerabilities
According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is potentially affected by multiple vulnerabilities: - An open redirect vulnerability exists in the startup.jsp resource. An unauthenticated, remote attacker can exploit this via the...
CVE-2019-11588
CVE-2019-11588 affects Atlassian Jira where the ViewSystemInfo.doGarbageCollection method is vulnerable to CSRF, allowing remote attackers to trigger garbage collection. Affected versions are Jira before 7.13.6; Jira 8.0.0–8.2.2; Jira 8.3.0–8.3.1. The issue is fixed in Jira 7.13.6, 8.2.3, and 8.3...
CVE-2019-11588
The ViewSystemInfo class doGarbageCollection method in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to trigger garbage collection via a Cross-site request forgery CSRF vulnerability...