Description
The way in which velocity templates were used in Atlassian Jira Server and Data Center prior to version 8.8.0 allowed remote attackers to gain remote code execution if they were able to exploit a server side template injection vulnerability.
Remediation
References
Related Vulnerabilities
MySQL CVE-2012-1689 Vulnerability (CVE-2012-1689)
phpMyFAQ Improper Access Control Vulnerability (CVE-2024-22202)
MySQL CVE-2019-2606 Vulnerability (CVE-2019-2606)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.32)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5097)