Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-69858

The bundled Atlassian Universal Plugin Manager plugin had a CSRF issue - CVE-2019-14999

XMLWordPrintable

      The version of the bundled Atlassian Universal Plugin Manager plugin had a CSRF vulnerability that allowed remote attackers, through an administrator, uninstall plugins through a rest endpoint. See https://ecosystem.atlassian.net/browse/UPM-6044 for more details.

            Unassigned Unassigned
            security-metrics-bot Security Metrics Bot
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: