Lucene search
K

5 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

JIRA Issues Collector Directory Traversal

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpClient include...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/06/02 12:0 a.m.15 views

JIRA Issues Collector Directory Traversal (CVE-2014-2314)

A directory traversal vulnerability has been reported in the Issues Collector plugin in Atlassian JIRA. The vulnerability is due to insufficient validation of the 'filename' parameter provided by the user. A remote attacker could exploit this vulnerability by sending a specially crafted request t...

4.3CVSS6.2AI score0.26151EPSS
Exploits6
Circl
Circl
added 2014/04/07 12:0 a.m.11 views

CVE-2014-2314

creationtimestamp| type| source ---|---|--- 2014-04-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32725 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/jiracollectortraversal.rb 2025-02-06 03:13:41+00:00...

4.3CVSS5.7AI score0.26151EPSS
Exploits6References2
Packet Storm
Packet Storm
added 2014/04/05 12:0 a.m.45 views

JIRA Issues Collector Directory Traversal

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'JIRA Issues Collector Directory Traversal', 'Description' = %q This module exploits a directory traversal flaw in JIRA 6.0.3. The...

4.3CVSS0.2AI score0.26151EPSS
Exploits6
CVE
CVE
added 2014/03/07 8:0 p.m.81 views

CVE-2014-2314

CVE-2014-2314 affects Atlassian Jira’s Issue Collector in versions prior to 6.0.4. The vulnerability is a directory traversal flaw in the Issue Collector component, driven by insufficient validation of the filename parameter, allowing a remote attacker to create arbitrary files. Several connected...

4.3CVSS6.8AI score0.26151EPSS
Exploits6References3Affected Software1
Rows per page
Query Builder