Sonicwall Signatures
Go to
All Categories
list.
Atlassian FishEye/Crucible Information Disclosure
Category:
WEB-ATTACKS
The mostActiveCommitters.do resource in Atlassian FishEye and Crucible, before version 4.4.1 allows anonymous remote attackers to access sensitive information, for example email addresses of committers, as it lacked permission checks.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9512
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0
