CVE-2019-8449 PoC — Atlassian Jira 访问控制错误漏洞

Source

https://github.com/r0lh/CVE-2019-8449

Associated Vulnerability

Title:Atlassian Jira 访问控制错误漏洞 (CVE-2019-8449)
Description:The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.

Description

User Enumeration Proof Of Concept Exploit for CVE-2019-8449

Readme

# CVE-2019-8449

Proof Of Concept Exploit for CVE-2019-8449

Jira < 8.4.0

User Enumeration

Detail: https://www.cvedetails.com/cve/CVE-2019-8449/

Usage
$ go run CVE-2019-8449.go -f USERFILE.txt -p 8080 -u example.com

File Snapshot


 [4.0K]  /data/pocs/7b8e4fe997e4b8ddac5a55aac914ba5aca8084de
├── [2.4K]  CVE-2019-8449.go
└── [ 219]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!