5 matches found
JIRA Issues Collector Directory Traversal
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpClient include...
JIRA Issues Collector Directory Traversal (CVE-2014-2314)
A directory traversal vulnerability has been reported in the Issues Collector plugin in Atlassian JIRA. The vulnerability is due to insufficient validation of the 'filename' parameter provided by the user. A remote attacker could exploit this vulnerability by sending a specially crafted request t...
CVE-2014-2314
creationtimestamp| type| source ---|---|--- 2014-04-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32725 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/jiracollectortraversal.rb 2025-02-06 03:13:41+00:00...
JIRA Issues Collector Directory Traversal
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'JIRA Issues Collector Directory Traversal', 'Description' = %q This module exploits a directory traversal flaw in JIRA 6.0.3. The...
CVE-2014-2314
CVE-2014-2314 affects Atlassian Jira’s Issue Collector in versions prior to 6.0.4. The vulnerability is a directory traversal flaw in the Issue Collector component, driven by insufficient validation of the filename parameter, allowing a remote attacker to create arbitrary files. Several connected...