Description
The ForgotLoginDetails resource in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, from version 7.8.0 before version 7.8.4 and from version 7.9.0 before version 7.9.2 allows remote attackers to perform a denial of service attack via sending requests to it.
Remediation
References
Related Vulnerabilities
WordPress Plugin pootle button Cross-Site Scripting (1.1.1)
Twisted Web HTTP Server Improper Certificate Validation Vulnerability (CVE-2019-12855)
PHP Out-of-bounds Read Vulnerability (CVE-2019-11041)
Internet Information Services Other Vulnerability (CVE-1999-0233)
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-18650)