Description
The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a project via a missing authorisation check.
Remediation
References
Related Vulnerabilities
WordPress Plugin typofr Cross-Site Scripting (0.11)
WordPress Plugin Product Catalog Unspecified Vulnerability (3.1.3)
WordPress Plugin Adminer Cross-Site Scripting (1.4.2)
WordPress Other Vulnerability (CVE-2006-5705)
CrushFTP Server Improper Validation of Integrity Check Value Vulnerability (CVE-2023-48795)