id: jira-unauthenticated-screens info: name: Jira Unauthenticated Access to screens author: TESS severity: info reference: - https://developer.atlassian.com/cloud/jira/platform/rest/v2/api-group-screens/#api-rest-api-2-screens-get metadata: max-request: 1 shodan-query: http.component:"Atlassian Jira" product: jira_data_center vendor: atlassian tags: atlassian,jira classification: cpe: cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:* http: - method: GET path: - "{{BaseURL}}/rest/api/2/screens" max-size: 1000 matchers-condition: and matchers: - type: word words: - '"id":' - '"name":' - '"description":' condition: and - type: status status: - 200 - type: word part: header words: - "atlassian.xsrf.token" # digest: 4b0a00483046022100f47ced43b8419319e9c9ec86664c53d54c3445bffd4b95b2253a39b81856bc20022100e9d254c328d1a1daf297468d1fc6ae202f3e5aa15505af50625e290a019cdfef:922c64590222798bb761d5b6d8e72950