[JRASERVER-61803] CVE-2016-4319: /auditing/settings was vulnerable to CSRF - Create and track feature requests for Atlassian products.

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Low
Resolution: Fixed
Affects Version/s: 7.1.4
Fix Version/s: 7.1.9, Available in Jira Cloud
Component/s: System Administration - Auditing
Labels:

Introduced in Version:
7.01
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

NOTE: This bug report is for JIRA Server. Using JIRA Cloud? See the corresponding bug report.

The /auditing/settings resource was vulnerable to CSRF attacks.

Attachments

Issue Links

relates to

JRACLOUD-61803 CVE-2016-4319: /auditing/settings was vulnerable to CSRF

Closed

Activity

People

Assignee:

Unassigned

Reporter:

lukasz.plonka324392336

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

07/Jul/2016 12:32 AM

Updated:

28/Mar/2019 12:21 AM

Resolved:

07/Jul/2016 12:38 AM