Description
Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allow remote attackers to modify various settings via Cross-site request forgery (CSRF).
Remediation
References
Related Vulnerabilities
WordPress Plugin SMTP Mailer Cross-Site Request Forgery (1.0.6)
WordPress Plugin Simple Download Monitor Cross-Site Scripting (3.5.3)
PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-25170)
WordPress Plugin Convert Plus Unspecified Vulnerability (3.5.6)
Drupal Files or Directories Accessible to External Parties Vulnerability (CVE-2017-6922)