The Jira Importers Plugin in Atlassian Jira Server and Data Cente from version with 7.0.10 prior to 7.6.16, from 7.7.0 prior to 7.13.8, from 8.0.0 prior to 8.1.3, from 8.2.0 prior to 8.2.5, from 8.3.0 prior to 8.3.4 and from 8.4.0 prior to 8.4.1 allows remote attackers with Administrator permissions to gain remote code execution via a template injection vulnerability through the use of a crafted PUT request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian jira server |
||
atlassian jira server 8.4.0 |
||
atlassian jira data center |
||
atlassian jira data center 8.4.0 |