Description
Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allow remote attackers to modify various settings via Cross-site request forgery (CSRF).
Remediation
References
Related Vulnerabilities
WordPress Plugin Wordpress Uninstall Cross-Site Request Forgery (1.2.1)
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.3)
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability (0.71 - 2.6.1)
e107 Deserialization of Untrusted Data Vulnerability (CVE-2016-10753)