Jira

Attackers could have taken over an Atlassian account via one-click exploit

Application Security, Third-Party Security, Vulnerabilities & Exploits / / / , , , , , , , ,

Cybersecurity researchers have discovered a series of chained Atlassian vulnerabilities that could have allowed an attacker to take over an Atlassian account connected via SSO and control Atlassian applications.

Attackers could have taken over an Atlassian account via one-click exploit Read More »

Atlassian patches critical Jira Server vulnerability

Security Updates & Patches, Vulnerabilities & Exploits / / / ,

Atlassian issued a security update for a critical Jira Server vulnerability. According to Atlassian, a server-side template injection vulnerability CVE-2019-11581 affects Jira Server and Data Center, in the ContactAdministrators and the SendBulkMail actions. The company confirmed an attacker can exploit this vulnerability if any of the following conditions are met: An SMTP server has been

Atlassian patches critical Jira Server vulnerability Read More »