Description
The Jira-importers-plugin in Atlassian Jira before version 7.6.1 allows remote attackers to create new projects and abort an executing external system import via various Cross-site request forgery (CSRF) vulnerabilities.
Remediation
References
Related Vulnerabilities
Liferay DXP Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124)
WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-9066)
Python Other Vulnerability (CVE-2015-5652)
Joomla Cryptographic Issues Vulnerability (CVE-2014-7228)
Oracle Application Server Resource Management Errors Vulnerability (CVE-2007-2120)