nuclei-templates/http/vulnerabilities/jira/jira-unauthenticated-user-p...

25 lines
721 B
YAML

id: jira-unauthenticated-user-picker
info:
name: Jira Unauthenticated User Picker
author: TechbrunchFR
severity: info
classification:
cpe: cpe:2.3:a:atlassian:jira_data_center:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: atlassian
product: jira_data_center
shodan-query: http.component:"Atlassian Jira"
tags: atlassian,jira
http:
- method: GET
path:
- "{{BaseURL}}/secure/popups/UserPickerBrowser.jspa"
matchers:
- type: word
words:
- 'user-picker'
# digest: 4a0a00473045022100873cfb22e0cc38f7facd56c29d34df6d7ee435af82db2bde5f76e7ea483055d1022051627db3af21ccbec24f901edded2463d85a9489cecdaa50d28ccba3152ccbf6:922c64590222798bb761d5b6d8e72950