Security Advisory

CVE-2019-14999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-23 13:49:47

Last updated 2024-09-17 02:05:32

Assigner atlassian

State PUBLISHED

Description

The Uninstall REST endpoint in Atlassian Universal Plugin Manager before version 2.22.19, from version 3.0.0 before version 3.0.3 and from version 4.0.0 before version 4.0.3 allows remote attackers to uninstall plugins using a Cross-Site Request Forgery (CSRF) vulnerability on an authenticated administrator.

← Browse all CVEs View on cve.org ↗