Loading...

Log In
Closed

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 7.13.4, 8.2.2
Affects Version/s: 7.13.0
Component/s: UPM (Universal Plugin Manager)
Labels:

Fixed in Long Term Support Release/s:

Download 7.13
Introduced in Version:
7.13
Symptom Severity:
Severity 3 - Minor

The version of the bundled Atlassian Universal Plugin Manager plugin had a CSRF vulnerability that allowed remote attackers, through an administrator, uninstall plugins through a rest endpoint. See https://ecosystem.atlassian.net/browse/UPM-6044 for more details.

mentioned in: Page Loading...

Assignee:: Unassigned
Reporter:: Security Metrics Bot
Votes:: 0 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: 23/Aug/2019 4:49 AM
Updated:: 14/Jul/2021 3:15 AM
Resolved:: 23/Aug/2019 4:51 AM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates