Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Atlassian Jira Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6619) - Vulnerability Database

Atlassian Jira Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6619)

Description

The Setup Wizard in Atlassian JIRA Enterprise Edition before 3.12.1 does not properly restrict setup attempts after setup is complete, which allows remote attackers to change the default language.

References

CVE-2007-6619

Related Vulnerabilities

XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732) Medium
Common tags: Missing Update Known Vulnerabilities
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7741) Medium
Common tags: Missing Update Known Vulnerabilities
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-6970) High
Common tags: Missing Update Known Vulnerabilities
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-6975) High
Common tags: Missing Update Known Vulnerabilities
PHP Out-of-bounds Write Vulnerability (CVE-2019-6977) High
Common tags: Missing Update Known Vulnerabilities

Severity

High

Classification

CVE-2007-6619
CWE-264

Tags

Missing Update
Known Vulnerabilities