CVE-2023-26256

The repository contains a functional exploit PoC for CVE-2023-26256, which targets an unauthenticated file download vulnerability in the STAGIL Navigation for Jira plugin. The script sends crafted HTTP requests to retrieve sensitive files (e.g., /etc/passwd) via path traversal.

This repository contains a functional exploit PoC for CVE-2023-26256, targeting an unauthenticated file download vulnerability in the STAGIL Navigation for Jira plugin. The script sends crafted HTTP requests to retrieve sensitive files (e.g., /etc/passwd) via path traversal.

The repository contains a functional exploit PoC for CVE-2023-26256, which targets a path traversal vulnerability in the STAGIL Navigation for Jira plugin. The script attempts to read arbitrary files (e.g., /etc/passwd) via unauthenticated HTTP requests to vulnerable endpoints.

The repository contains a functional exploit PoC for CVE-2023-26256, targeting a path traversal vulnerability in the STAGIL Navigation for Jira plugin. The script attempts to read arbitrary files (e.g., /etc/passwd) via crafted URLs, confirming vulnerability if the file content is returned.

The repository contains detailed technical writeups for CVE-2023-26255 and CVE-2023-26256, both directory traversal vulnerabilities in the 'Stagil navigation for Jira' plugin. The writeups include proof-of-concept HTTP requests, affected parameters, and mitigation steps.

The repository contains a functional exploit PoC for CVE-2023-26256, which targets a path traversal vulnerability in the STAGIL Navigation for Jira plugin. The script attempts to read arbitrary files (e.g., /etc/passwd) via crafted HTTP requests to vulnerable endpoints.