Description
Affected versions of Atlassian Jira Server and Data Center allow a remote attacker who has had their access revoked from Jira Service Management to enable and disable Issue Collectors on Jira Service Management projects via an Improper Authentication vulnerability in the /secure/ViewCollectors endpoint. The affected versions are before version 8.19.1.
Remediation
References
Related Vulnerabilities
WordPress Plugin Coming Soon Multiple Vulnerabilities (1.1.18)
PostgreSQL Out-of-bounds Read Vulnerability (CVE-2019-10129)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.30)
SharePoint CVE-2025-21348 Vulnerability (CVE-2025-21348)
WordPress Plugin Estatik Real Estate Arbitrary File Upload (2.3.0)