9 matches found
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote code execution and credential-stealing methods to maintain persistent...
Jira Server/Data Center Limited Remote File Read (CVE-2021-26086)
Binary data jiracve-2021-26086.nbin...
Atlassian Confluence Server Arbitrary File Read (CVE-2021-26085; CVE-2021-26086)
An arbitrary file read vulnerability exists in Atlassian Confluence Server. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access and read arbitrary file...
MariaDB: Path Traversal CVE-2021-26086 CVE-2021-26085
These vulnerabilities were found with https://trickest.com https://trickest.io CVE-2021-26085: ===================== https://jira.mariadb.org:/s/123cfx//;/WEB-INF/web.xml CVE-2021-26086: ===================== https://jira.mariadb.org/s/cfx//;/WEB-INF/web.xml Video explanation: -------------------...
Atlassian Jira Server Data Center 8.16.0 - Arbitrary File Read
Exploit Title: Atlassian Jira Server Data Center 8.16.0 - Arbitrary File Read Date: 2021-10-05 Exploit Author: Mayank Deshmukh Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/jira/download/data-center Version: versions 8.5.14, 8.6.0 ≤ version 8.13.6,...
Atlassian Jira 文件读取漏洞(CVE-2021-26086)
...
CVE-2021-26086
creationtimestamp| type| source ---|---|--- 2021-08-16 07:14:13+00:00| seen| https://t.me/cibsecurity/27346 2021-10-12 05:21:05+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/680 2021-10-13 11:07:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4511...
CVE-2021-26086
CVE-2021-26086 affects Atlassian Jira Server/Data Center via a path traversal in /WEB-INF/web.xml. Affected versions are pre-8.5.14, 8.6.0–8.13.6, and 8.14.0–8.16.1. Impact is read access to arbitrary files (remote attacker). Fixed versions are 8.5.14, 8.13.6, 8.16.1, and 8.17.0; mitigations incl...
Limited Remote File Read in Jira Software Server - CVE-2021-26086
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to read particular files via a path traversal vulnerability in the /WEB-INF/web.xml endpoint. The affected versions are before version 8.5.14, from version 8.6.0 before 8.13.6, and from version 8.14.0 before 8.16.1...