Uploaded image for project: 'Crucible'
  1. Crucible
  2. CRUC-8468

Security misconfiguration in the /json/fe/activeUserFinder.do resource - CVE-2020-4015

XMLWordPrintable

      The /json/fe/activeUserFinder.do resource in Altassian Fisheye and Crucible before version 4.8.1 allows remote attackers to view user user email addresses via a security misconfiguration.

            Unassigned Unassigned
            security-metrics-bot Security Metrics Bot
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: