Description
Versions before 8.9.1, Various resources in Jira responded with a 404 instead of redirecting unauthenticated users to the login page, in some situations this may have allowed unauthorised attackers to determine if certain resources exist or not through an Information Disclosure vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Google Map Cross-Site Scripting (1.1.4)
WordPress Plugin Insert or Embed Articulate Content into WordPress Remote Code Execution (4.2997)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2359)
WordPress Plugin Fathom Analytics Cross-Site Scripting (3.0.4)