Lucene search
AtlassianCVELIST:CVE-2019-8449HistorySep 11, 2019 - 1:56 p.m.
CVE-2019-8449
2019-09-1113:56:26
atlassian
www.cve.org
7
The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.
CNA Affected
[
{
"product": "Jira",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "8.4.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Information disclosure
2019-09-11 14:15:00
githubexploit
githubexploit
Exploit for Missing Authentication for Critical Function in Atlassian Jira
2020-02-14 10:33:00
Exploit for Missing Authentication for Critical Function in Atlassian Jira
2020-02-02 16:42:32
cve
cve
CVE-2019-8449
2019-09-11 14:15:12
atlassian
atlassian
User enumeration through the groupuserpicker api resource - CVE-2019-8449
2019-08-12 02:48:48
User enumeration through the groupuserpicker api resource - CVE-2019-8449
2019-08-12 02:48:48
zdt
zdt
Jira 8.3.4 - Information Disclosure (Username Enumeration) Exploit
2020-02-03 00:00:00
packetstorm
packetstorm
Jira 8.3.4 Information Disclosure
2020-02-02 00:00:00
dsquare
dsquare
Atlassian JIRA Username Enumeration
2020-01-10 00:00:00
nvd
nvd
CVE-2019-8449
2019-09-11 14:15:12
exploitdb
exploitdb
Jira 8.3.4 - Information Disclosure (Username Enumeration)
2020-02-03 00:00:00
exploitpack
exploitpack
Jira 8.3.4 - Information Disclosure (Username Enumeration)
2020-02-03 00:00:00
nuclei
nuclei
Jira <8.4.0 - Information Disclosure
2020-06-30 10:36:15
hackerone
hackerone
OneWeb: Vulnerable Jira Instance
2021-09-27 14:44:08
nessus
nessus
Atlassian JIRA < 8.4.0 Multiple Vulnerabilities
2019-09-20 00:00:00
Atlassian Jira < 8.4.0 Multiple Vulnerabilities
2019-10-09 00:00:00