5 matches found
Atlassian Jira 8.15.x < 8.16.0 XSRF (JRASERVER-72761)
The version of Atlassian Jira installed on the remote host is prior to 8.15.x 8.16.0. It is, therefore, affected by a vulnerability as referenced in the JRASERVER-72761 advisory. - Replay attack via the CSRF failure retry form - CVE-2021-39124 CVE-2021-39124 Note that Nessus has not tested for th...
CVE-2021-39124
The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...
CVE-2021-39124
The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...
CVE-2021-39124
The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...
CVE-2021-39124
Atlassian Jira Server and Data Center are affected prior to 8.16.0 by a CSRF failure retry feature that lets remote attackers trick a user into retrying a request, bypassing CSRF protection and replaying a crafted request. Affected versions: