Description

The ManageFilters.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote attackers to enumerate usernames via an incorrect authorisation check.

Remediation

References

CVE-2019-3401

Related Vulnerabilities

phpMyFAQ Other Vulnerability (CVE-2005-3048)

WordPress Plugin Customize Youtube Videos Multiple Vulnerabilities (0.2)

WebLogic CVE-2020-14636 Vulnerability (CVE-2020-14636)

Jetty Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-26048)

WordPress Plugin Booster for WooCommerce PHP Object Injection (3.0.1)

Severity

Medium

Classification

CVE-2019-3401 CWE-863

Tags

Missing Update Known Vulnerabilities