Lucene search
K

12 matches found

Nuclei
Nuclei
added 2026/06/25 5:45 a.m.85 views

Jira <8.4.0 - Server-Side Request Forgery

Jira before 8.4.0 is susceptible to server-side request forgery. The /plugins/servlet/gadgets/makeRequest resource contains a logic bug in the JiraWhitelist class, which can allow an attacker to access the content of internal network resources and thus modify data, and/or execute unauthorized...

6.5CVSS6.8AI score0.94453EPSS
Exploits2References5
Circl
Circl
added 2023/06/16 3:55 p.m.202 views

CVE-2019-8451

creationtimestamp| type| source ---|---|--- 2023-06-16 15:55:55+00:00| seen| https://t.me/criticalbug/975 2023-11-17 08:44:59+00:00| seen| https://t.me/arpsyndicate/242 2024-03-18 07:23:33+00:00| published-proof-of-concept| https://t.me/lostsec/164 2024-10-09 19:49:41+00:00| seen|...

6.5CVSS6.8AI score0.94453EPSS
In wildExploits2References8
Check Point Advisories
Check Point Advisories
added 2022/05/30 12:0 a.m.12 views

Jira Server-Side Request Forgery (CVE-2019-8451)

A Server Side Request Forgery vulnerability exists in Jira. A remote attacker may exploit this issue by making a specially crafted HTTP request. Successful exploitation would allow attackers to create HTTP requests on behalf of the vulnerable server...

6.4CVSS4.2AI score0.94453EPSS
Exploits2
Kitploit
Kitploit
added 2019/11/16 1:42 p.m.148 views

Jaeles - The Swiss Army Knife For Automated Web Application Testing

Jaeles is a powerful, flexible and easily extensible framework written in Go for building your own Web Application Scanner. Installation go get -u github.com/jaeles-project/jaeles Please visit the Official Documention for more details. Checkout Signature Repo for base signature. Usage More usage...

6.5CVSS6.8AI score0.94453EPSS
Exploits2References6
GithubExploit
GithubExploit
added 2019/09/28 1:1 a.m.67 views

Exploit for Server-Side Request Forgery in Atlassian Jira_Server

Jira CVE-2019-8451 POC Description Proof of concept scan...

6.5CVSS6.9AI score0.94453EPSS
Exploits2
GithubExploit
GithubExploit
added 2019/09/26 5:6 a.m.80 views

Exploit for Server-Side Request Forgery in Atlassian Jira_Server

CVE-2019-8451 Jira未授权SSRF漏洞 python usage python CVE-2019...

6.5CVSS6.8AI score0.94453EPSS
Exploits2
Atlassian
Atlassian
added 2019/09/25 4:55 a.m.150 views

SSRF in the /plugins/servlet/gadgets/makeRequest resource - CVE-2019-8451

The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery SSRF vulnerability due to a logic bug in the JiraWhitelist class...

6.5CVSS6AI score0.94453EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/09/20 12:0 a.m.67 views

Atlassian JIRA < 8.4.0 Multiple Vulnerabilities

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to prior to 8.4.0. It is, therefore, affected by multiple vulnerabilities: - An authorization bypass vulnerability exists in the /rest/issueNav/1/issueTable resource as well as t...

6.5CVSS6.2AI score0.94453EPSS
Exploits12References10
CVE
CVE
added 2019/09/11 1:56 p.m.142 views

CVE-2019-8451

CVE-2019-8451 affects Jira Server before 8.4.0 with an SSRF in the /plugins/servlet/gadgets/makeRequest endpoint due to a logic bug in JiraWhitelist. An attacker can cause Jira to fetch internal resources and return their responses, enabling access to internal network content. The weakness is pre...

6.5CVSS6.4AI score0.94453EPSS
In wildExploits2References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/09/11 12:0 a.m.25 views

CVE-2019-8451

The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery SSRF vulnerability due to a logic bug in the JiraWhitelist class. Recent assessments: h0ffayyy at September...

6.5CVSS1.7AI score0.94453EPSS
Exploits2References2
Atlassian
Atlassian
added 2019/08/12 2:44 a.m.190 views

SSRF in the /plugins/servlet/gadgets/makeRequest resource - CVE-2019-8451

The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery SSRF vulnerability due to a logic bug in the JiraWhitelist class...

6.5CVSS6AI score0.94453EPSS
Exploits2Affected Software1
Atlassian
Atlassian
added 2019/08/12 2:44 a.m.50 views

SSRF in the /plugins/servlet/gadgets/makeRequest resource - CVE-2019-8451

The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery SSRF vulnerability due to a logic bug in the JiraWhitelist class. Important Note: The patch is deployed in f...

6.5CVSS6.5AI score0.94453EPSS
Exploits2
Rows per page
Query Builder