2 matches found
CVE-2019-20100
CVE-2019-20100 affects Atlassian Jira Server/Data Center via the Atlassian Application Links plugin CSRF vulnerability. Affected plugin versions include all before 5.4.21, 6.0.0–before 6.0.12, 6.1.0–before 6.1.2, 7.0.0–before 7.0.2, and 7.1.0–before 7.1.3, with Jira Server/Data Center before 8.7....
CSRF in Application Links plugin allows network enumeration - CVE-2019-20100
Atlassian Jira Server and Data Center before version 8.7.0 use a version of the Atlassian Application Links plugin that is vulnerable to cross-site request forgery CSRF. An attacker could exploit this by tricking an administrative user into making malicious HTTP requests, allowing the attacker to...