Uploaded image for project: 'Jira Cloud'
  1. Jira Cloud
  2. JRACLOUD-66128

Several actions vulnerable to CSRF (have websudo protection)

    XMLWordPrintable

Details

    Description

      A number of actions in JIRA were vulnerable to CSRF as they performed no token checking. These actions are protected by websudo, which makes exploiting them impossible.

      Attachments

        Activity

          People

            Unassigned Unassigned
            kburnett Karla Burnett [Atlassian]
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: