Atlassian JIRA < 6.0.4 Arbitrary File Creation

According to its self-reported version number, the version of Atlassian JIRA hosted on the remote web server is prior to version 6.0.4. It is, therefore, potentially affected by an arbitrary file creation vulnerability due to a flaw in the Issue Collector plugin in which the 'filename' POST...

CVE-2014-2314

Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors...

Directory traversal

Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors...

CVE-2014-2314

CVE-2014-2314 affects Atlassian Jira’s Issue Collector in versions prior to 6.0.4. The vulnerability is a directory traversal flaw in the Issue Collector component, driven by insufficient validation of the filename parameter, allowing a remote attacker to create arbitrary files. Several connected...