Description
An information disclosure vulnerability in Jira allows an unauthenticated user to enumerate users via /ViewUserHover.jspa endpoint.
Remediation
Upgrade to the latest version of Jira
References
Related Vulnerabilities
WordPress Plugin MiwoFTP-File & Folder Manager Arbitrary File Download (1.0.5)
WordPress Plugin Google Doc Embedder Arbitrary File Disclosure (2.4.6)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-20151)
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.22)
WordPress Plugin WP Hide & Security Enhancer Arbitrary File Download (1.3.9.2)