Jira Scriptrunner 2.0.7 - Cross-Site Request Forgery / Remote Code Execution (Metasploit)

Author Ben 'highjack' Sheppard Title Jira Scriptrunner 2.0.7 'Jira Scriptrunner 2.0.7 %qThis jira plugin does notuse the built in jira protections websudo or csrf tokens to protect the page from CSRF. This page is supposed to be used by admins to automate tasks, it will accept java code and by...