CVE-2020-36238

The /rest/api/1.0/render resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to determine if a username is valid or not via a missing permissions check...

Atlassian Jira Information Disclosure Vulnerability (CNVD-2019-32326)

Atlassian Jira is a tool developed by Australian company Atlassian for defect tracking, issue tracking and project management. An information disclosure vulnerability exists in the /rest/api/1.0/render resource in Atlassian Jira versions prior to 8.4.0, which can be exploited by a remote attacker...