Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the Infosysta "In-App & Desktop Notifications" app 1.6.13_J8 for Jira. By using plugins/servlet/nfj/PushNotification?username= with a modified username, a different user's notifications can be read without authentication/authorization. These notifications are then no longer displayed to the normal user.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Infosysta In-App&Desktop Notification for Jira 授权问题漏洞
Vulnerability Description
Infosysta In-App&Desktop Notification for Jira是黎巴嫩Infosysta公司的一款适用于Jira缺陷跟踪管理系统的电子邮件通知插件。 Infosysta In-App&Desktop Notification for Jira 1.6.13_J8版本中存在身份验证绕过漏洞。攻击者可利用该漏洞查看推送的通知。
CVSS Information
N/A
Vulnerability Type
N/A