Description
Atlassian Jira Server and Data Center in affected versions allows remote attackers to modify logging and profiling settings via a cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.3, and from version 8.0.0 before 8.1.0.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2015-0228)
WordPress Plugin Contact Form Multi by BestWebSoft Cross-Site Scripting (1.2.0)
WordPress Plugin Download Manager Multiple Cross-Site Scripting Vulnerabilities (3.2.48)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)