Description
The /rest/project-templates/1.0/createshared resource in Atlassian Jira Server and Data Center before version 8.5.5, from 8.6.0 before 8.7.2, and from 8.8.0 before 8.8.1 allows remote attackers to enumerate project names via an improper authorization vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy PayPal Gift Certificate Multiple Vulnerabilities (1.2.3)
WordPress Plugin WP Auctions 'wpa_id' Parameter SQL Injection (1.8.8)
WordPress 5.6.x Multiple Vulnerabilities (5.6 - 5.6.12)
Oracle Database Server CVE-2011-0881 Vulnerability (CVE-2011-0881)
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)