Description
The Cross-Site Request Forgery (CSRF) failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request.
Remediation
References
Related Vulnerabilities
WordPress Plugin My Tickets Cross-Site Request Forgery (1.9.10)
WordPress Plugin PDF Viewer Block for Gutenberg Cross-Site Scripting (1.0)
WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.15)
Jenkins Improper Authentication Vulnerability (CVE-2018-1999045)
WordPress Plugin PowerPress Podcasting by Blubrry Unspecified Vulnerability (8.6.1)