Open Redirect Vulnerability in Jira Versions 7.13.6 to 8.3.1

Open Redirect Vulnerability in Jira Versions 7.13.6 to 8.3.1

CVE-2019-11585 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

The startup.jsp resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect.

Learn more about our Web App Pen Testing.