Description
The Jira-importers-plugin in Atlassian Jira before version 7.6.1 allows remote attackers to create new projects and abort an executing external system import via various Cross-site request forgery (CSRF) vulnerabilities.
Remediation
References
Related Vulnerabilities
TYPO3 URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-15241)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-35625)
WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more Cross-Site Scripting (1.6.9)
MediaWiki Improper Access Control Vulnerability (CVE-2016-6331)
WordPress Plugin GEO Redirector Cross-Site Scripting (1.0.1)