cve/CVE-2023-26255.md at 4cdc7cc63082b60e36d1d9d956509a405762a272

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & Themes" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjCustomDesignConfig endpoint, it is possible to traverse and read the file system.

POC

Reference

https://github.com/1nters3ct/CVEs/blob/main/CVE-2023-26255.md
https://github.com/1nters3ct/CVEs/blob/main/CVE-2023-26255.md

Github

https://github.com/0x7eTeam/CVE-2023-26256
https://github.com/Nian-Stars/CVE-2023-26255-6
https://github.com/aodsec/CVE-2023-26256
https://github.com/jcad123/CVE-2023-26256
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/tucommenceapousser/CVE-2023-26255-Exp

1.0 KiB Raw Blame History

CVE-2023-26255

Description

POC

Reference

Github

1.0 KiB

Raw Blame History