3 matches found
CVE-2019-20099
The CVE-2019-20099 issue affects Atlassian Jira Server and Data Center (pre-8.7.0); the VerifyPopServerConnection!add.jspa component is vulnerable to CSRF, enabling an attacker to trick an admin into actions that enumerate internal hosts/ports. A fix is available in 8.7.0+; upgrade to 8.7.0 or la...
CVE-2019-20099
The VerifyPopServerConnection!add.jspa component in Atlassian Jira Server and Data Center before version 8.7.0 is vulnerable to cross-site request forgery CSRF. An attacker could exploit this by tricking an administrative user into making malicious HTTP requests, allowing the attacker to enumerat...
CSRF in VerifyPopServerConnection!add.jspa - CVE-2019-20099
The VerifyPopServerConnection!add.jspa component in Atlassian Jira Server and Data Center before version 8.7.0 is vulnerable to cross-site request forgery CSRF. An attacker could exploit this by tricking an administrative user into making malicious HTTP requests, allowing the attacker to enumerat...