CVE-2019-5095
CVE-2019-5095 affects Atlassian Jira Tempo Core plugin 4.10.0 (with Jira 7.6.4). It is a summary information disclosure due to missing authorization: authenticated users can obtain issue summaries they are not permitted to view via the Tempo plugin. Exploit requires a valid session; PoC calls GET...