cve/2019/CVE-2019-20401.md

CVE-2019-20401

Description

Various installation setup resources in Jira before version 8.5.2 allow remote attackers to configure a Jira instance, which has not yet finished being installed, via Cross-site request forgery (CSRF) vulnerabilities.

POC

Reference

• https://jira.atlassian.com/browse/JRASERVER-70406

Github

• https://github.com/20142995/nuclei-templates
• https://github.com/cyb3r-w0lf/nuclei-template-collection