Vulnerability in Atlassian Jira
CVE-2019-8447
The ServiceExecutor resource in Jira before version 8.3.2 allows remote attackers to trigger the creation of export files via a Cross-site request forgery (CSRF) vulnerability.
EPSS: 0.001 (28.5th percentile) — read the EPSS interpretation.
Affected products
- Atlassian Jira — versions unspecified
References
- jira.atlassian.com/browse/JRASERVER-69776 (x_refsource_MISC)