domain,ip,url
Yes
Yes
Yes
15
Jira IconURIServlet contains a server side request forgery vulnerability.
The IconUriServlet of the Atlassian OAuth Plugin from version 1.3.0 before version 1.9.12 and from version 2.0.0 before version 2.0.4 allows remote attackers to access the content of internal network resources and/or perform an XSS attack via Server Side Request Forgery (SSRF).
Update your Jira application to the latest version to eliminate this vulnerability.