Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-26256 PoC — Jira plugin STAGIL Navigation 路径遍历漏洞

Source
https://github.com/xhs-d/CVE-2023-26256
Associated Vulnerability
Title:Jira plugin STAGIL Navigation 路径遍历漏洞 (CVE-2023-26256)
Description:An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & Themes" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjFooterNavigationConfig endpoint, it is possible to traverse and read the file system.
Description
CVE-2023-26256_POC
Readme
## CVE-2023-26256_POC
```
fofa:body="JIRA"&&body="2.0.50"
```
```
Usage:
  python3 CVE-2023-26256.py -h
```
![](https://github.com/csdcsdcsdcsdcsd/CVE-2023-26256/blob/main/CVE-2023-26256.png)

## 免责声明
由于传播、利用此文所提供的信息而造成的任何直接或者间接的后果及损失,均由使用者本人负责,作者不为此承担任何责任。
File Snapshot

 [4.0K]  /data/pocs/899c53e0ef249a6117ed860b36b2858157ab912e
├── [106K]  CVE-2023-26256.png
├── [3.9K]  CVE-2023-26256.py
└── [ 378]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →