9 matches found
Atlassian Jira 8.0.0 < 8.0.4 Multiple Vulnerabilities
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 7.13.0 prior to 7.13.4, 8.0.0 prior to 8.0.4 or 8.1.0 prior to 8.1.1. It is, therefore, affected by multiple vulnerabilities: - A vulnerability which permits remote attackers w...
Atlassian Jira 7.13.0 < 7.13.4 Multiple Vulnerabilities
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 7.13.0 prior to 7.13.4, 8.0.0 prior to 8.0.4 or 8.1.0 prior to 8.1.1. It is, therefore, affected by multiple vulnerabilities: - A vulnerability which permits remote attackers w...
U.S. Dept Of Defense: CVE-2019-3403 on https://████/rest/api/2/user/picker?query=
Description: The endpoint at https://████████/rest/api/2/user/picker?query= Suffers from CVE-2019-3403 Due to old version of jira. F125281 References https://nvd.nist.gov/vuln/detail/CVE-2019-3403 @naglinagli Impact The /rest/api/2/user/picker rest resource in Jira before version 7.13.3, from...
Exploit for Incorrect Authorization in Atlassian Jira
CVE-2019-3403 I wanted to easily be able to exploit CVE-2019-3...
Mail.ru: Path traversal lead to LFR via [CVE-2019-3394]
Path traversal lead to Local File Read via CVE-2019-3403 in confluence.plazius.ru...
Atlassian Jira 7.13.x < 7.13.3 / 8.0.x < 8.0.4 / 8.1.x < 8.1.1 Information Disclosure Vulnerability
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is potentially affected by an information disclosure vulnerability in the /rest/api/2/user/picker rest resource due to incorrect authorization checks. An unauthenticated, remote attacker...
CVE-2019-3403
creationtimestamp| type| source ---|---|--- 2019-05-22 18:48:18+00:00| seen| https://t.me/cvemitreorg/139 2024-03-18 07:23:33+00:00| published-proof-of-concept| https://t.me/lostsec/164 2024-10-09 19:49:41+00:00| seen| https://t.me/CyberSecurityTechnologies/2581 2025-04-13 12:04:46+00:00| seen|...
Information disclosure in the /rest/api/2/user/picker rest resource - CVE-2019-3403
The /rest/api/2/user/picker rest resource in Jira before version 7.13.3, from version 8.0.0 before version 8.0.4, and from version 8.1.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check...
Atlassian JIRA CVE-2019-3403 Information Disclosure Vulnerability
Description Atlassian JIRA is prone to an information-disclosure vulnerability. Successful exploits of this issue lead to the disclosure of sensitive information which may aid in launching further attacks. Jira versions prior to 7.13.3, 8.0.0 through and prior to 8.0.4 and 8.1.0 through and prior...