Atlassian Jira URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2018-13402
Many resources in Atlassian Jira before version 7.6.9 from version 7.7.0 before version 7.7.5 from version 7.8.0 before version 7.8.5 from version 7.9.0 before version 7.9.3 from version 7.10.0 before version 7.10.3 from version 7.11.0 before version 7.11.3 from version 7.12.0 before version 7.12.3 and before version 7.13.1 allow remote attackers to attack users in some cases be able to obtain a user39s Cross-site request forgery (CSRF) token via a open redirect vulnerability.