CVE-2019-14998

Posted on 2019년 9월 11일2019년 9월 12일 by admin

CVE-2019-14998

The Webwork action Cross-Site Request Forgery (CSRF) protection implementation in Jira before version 8.4.0 allows remote attackers to bypass its protection via "cookie tossing" a CSRF cookie from a subdomain of a Jira instance.

Source: CVE-2019-14998

답글 남기기 응답 취소