Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2017-18033 - Vulnerability Database
Atlassian Jira

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2017-18033

Medium
Reference: CVE-2017-18033
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-18033
Title: Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

The Jira-importers-plugin in Atlassian Jira before version 7.6.1 allows remote attackers to create new projects and abort an executing external system import via various Cross-site request forgery (CSRF) vulnerabilities.