Better PDF Exporter (Jira Plugin) [CVE 2023-42361]
by Rodrigo Gava LFI (Local File Inclusion) Issue found in Jira Server and Data Center “Better PDF Exporter” Plugin Our research group has identified a significant vulnerability in the widely used Better PDF Exporter plugin for Jira Server and Jira Data Center. It’s worth noting that this plugin is highlighted as a “Staff Pick” on the Atlassian Marketplace and has amassed thousands of installations. Vulnerability Details: CVE Identifier: CVE-2023-42361 Product: Better PDF Exporter for Jira Server and Jira Data Center (Note: Jira Cloud version is NOT affected) Version Affected: Up to 10. …