Description
Atlassian JIRA is a tool that is used for bug tracking, issue tracking, and project management.
This instance of Atlassian JIRA is misconfigured to allow an attacker to sign up (create a new account) just by navigating to the signup page that is accessible at the URL /servicedesk/customer/user/signup. After the attacker has created a new account it's possible for him/her to access the support portal.
Remediation
Please consult the Atlassian documentation (from the References link) that explains how to choose the right settings to secure your Atlassian JIRA installation.
References
Related Vulnerabilities
WordPress Plugin Events Widgets For Elementor And The Events Calendar Security Bypass (1.4.3)
WordPress Plugin ThemeGrill Demo Importer Security Bypass (1.6.1)
WordPress Plugin Product Slider for WooCommerce Security Bypass (2.5.6)
WordPress Plugin Woocommerce User Email Verification Security Bypass (3.3.0)