Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability on the UserPickerBrowser.jspa page. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2.

Remediation

References

CVE-2019-20413

Related Vulnerabilities

WordPress Plugin mywebcounter Cross-Site Scripting (1.1)

WordPress Plugin Scribble Maps Cross-Site Scripting (1.2)

WordPress Plugin Thrive Architect Security Bypass (2.6.7.3)

WordPress Plugin WP Visitor Statistics (Real Time Traffic) Security Bypass (5.4)

WordPress Plugin Customify-Intuitive Website Styling Cross-Site Request Forgery (2.10.4)

Severity

High

Classification

CVE-2019-20413

Tags

Missing Update Known Vulnerabilities