Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify Wallboard settings via a Cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2.

Remediation

References

CVE-2019-20411

Related Vulnerabilities

WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Multiple Vulnerabilities (6.9.9)

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-16943)

WordPress Plugin ActiveCampaign-Forms, Site Tracking, Live Chat Unspecified Vulnerability (5.7)

WordPress Plugin Yoast SEO Cross-Site Scripting (22.5)

PHP NULL Pointer Dereference Vulnerability (CVE-2018-19395)

Severity

Medium

Classification

CVE-2019-20411 CWE-352

Tags

Missing Update Known Vulnerabilities