Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-69782

The ViewLogging class exposed various resources that were vulnerable to CSRF - CVE-2019-11587

XMLWordPrintable

      Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allow remote attackers to modify various settings via Cross-site request forgery (CSRF).

            Unassigned Unassigned
            security-metrics-bot Security Metrics Bot
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: