Lucene search
AtlassianCVELIST:CVE-2019-11581HistoryJul 10, 2019 - 12:00 a.m.
CVE-2019-11581
2019-07-1000:00:00
atlassian
www.cve.org
There was a server-side template injection vulnerability in Jira Server and Data Center, in the ContactAdministrators and the SendBulkMail actions. An attacker is able to remotely execute code on systems that run a vulnerable version of Jira Server or Data Center. All versions of Jira Server and Data Center from 4.4.0 before 7.6.14, from 7.7.0 before 7.13.5, from 8.0.0 before 8.0.3, from 8.1.0 before 8.1.2, and from 8.2.0 before 8.2.3 are affected by this vulnerability.
CNA Affected
[
{
"product": "Jira Server and Data Center",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "unspecified",
"status": "affected",
"version": "4.4.0",
"versionType": "custom"
},
{
"lessThan": "7.6.14",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "7.7.0",
"versionType": "custom"
},
{
"lessThan": "7.13.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "8.0.0",
"versionType": "custom"
},
{
"lessThan": "8.0.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "8.1.0",
"versionType": "custom"
},
{
"lessThan": "8.1.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "8.2.0",
"versionType": "custom"
},
{
"lessThan": "8.2.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
checkpoint_advisories
checkpoint_advisories
Atlassian Jira Server Remote Code Execution (CVE-2019-11581)
2019-07-17 00:00:00
nuclei
nuclei
Atlassian Jira Server-Side Template Injection
2020-12-05 08:51:54
githubexploit
githubexploit
Exploit for Injection in Atlassian Jira Server
2021-05-04 06:30:47
Exploit for Injection in Atlassian Jira Server
2019-07-16 02:27:00
Exploit for Code Injection in Atlassian Jira Service Desk
2021-09-07 09:03:35
cve
cve
CVE-2019-11581
2019-08-09 20:15:11
prion
prion
Sql injection
2019-08-09 20:15:00
nessus
nessus
Atlassian JIRA Server & JIRA Data Center Template Injection Vulnerability
2019-07-11 00:00:00
Atlassian JIRA Server Template Injection Vulnerability (CVE-2019-11581)
2019-09-13 00:00:00
attackerkb
attackerkb
CVE-2019-11581 β Atlassian JIRA Template injection vulnerability RCE
2019-08-09 00:00:00
cisa_kev
cisa_kev
nvd
nvd
CVE-2019-11581
2019-08-09 20:15:11
atlassian
atlassian
CVE-2019-11581 - Template injection in various resources
2019-06-26 05:27:16
CVE-2019-11581 - Template injection in various resources
2019-06-26 05:27:16
thn
thn
Hezbollah Hacker Group Targeted Telecoms, Hosting, ISPs Worldwide
2021-01-29 10:08:00
Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List
2019-07-25 09:38:00
threatpost
threatpost
Hezbollah-Linked Lebanese Cedar APT Infiltrates Hundreds of Servers
2021-02-01 21:18:09
cisa
cisa
CISA Adds 11 Known Exploited Vulnerabilities to Catalogβ―
2022-03-07 00:00:00