CVE-2022-39960
The CVE-2022-39960 issue affects the Netic Group Export add-on for Atlassian Jira, prior to version 1.0.3. The extension does not perform authorization checks, enabling an unauthenticated user to export all groups by calling groupexport_download=true on plugins/servlet/groupexportforjira/admin/. ...