Description

It was detected that Jira Projects is accessible anonymously, without authentication.

Remediation

Consider restricting unauthenticated access to projects.

References

Control anonymous user access

Related Vulnerabilities

WordPress username enumeration

Laravel framework weak secret key

WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Multiple Vulnerabilities (3.1.1)

WordPress Plugin Advanced Contact form 7 DB Information Disclosure (1.6.2)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3126)

Severity

Low

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Weak Credentials