Security Advisory

CVE-2021-26071

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-01 02:30:14

Last updated 2024-09-17 03:13:35

Assigner atlassian

State PUBLISHED

Description

The SetFeatureEnabled.jspa resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to enable and disable Jira Software configuration via a cross-site request forgery (CSRF) vulnerability.

← Browse all CVEs View on cve.org ↗