Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2019-8451

Description

The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.

POC

Reference

No PoCs from references.

Github

- https://github.com/0day404/vulnerability-poc

- https://github.com/0ps/pocassistdb

- https://github.com/0x48piraj/Jiraffe

- https://github.com/0x48piraj/jiraffe

- https://github.com/0xT11/CVE-POC

- https://github.com/0xbug/CVE-2019-8451

- https://github.com/20142995/nuclei-templates

- https://github.com/20142995/sectool

- https://github.com/ARPSyndicate/cvemon

- https://github.com/ARPSyndicate/kenzer-templates

- https://github.com/ArrestX/--POC

- https://github.com/BitTheByte/Eagle

- https://github.com/Elsfa7-110/kenzer-templates

- https://github.com/Faizee-Asad/JIRA-Vulnerabilities

- https://github.com/HaleBera/A-NOVEL-CONTAINER-ATTACKS-DATASET-FOR-INTRUSION-DETECTION-Deployments

- https://github.com/HimmelAward/Goby_POC

- https://github.com/KayCHENvip/vulnerability-poc

- https://github.com/Miraitowa70/POC-Notes

- https://github.com/NarbehJackson/python-flask-ssrfpdf-to-lfi

- https://github.com/NyxAzrael/Goby_POC

- https://github.com/SexyBeast233/SecBooks

- https://github.com/Soundaryakambhampati/test-6

- https://github.com/Threekiii/Awesome-POC

- https://github.com/TrojanAZhen/Self_Back

- https://github.com/UGF0aWVudF9aZXJv/Atlassian-Jira-pentesting

- https://github.com/XiaomingX/awesome-poc-for-red-team

- https://github.com/Z0fhack/Goby_POC

- https://github.com/alex14324/Eagel

- https://github.com/amcai/myscan

- https://github.com/assetnote/blind-ssrf-chains

- https://github.com/brunsu/woodswiki

- https://github.com/c26root/hb

- https://github.com/carnal0wnage/J-PWN

- https://github.com/d4n-sec/d4n-sec.github.io

- https://github.com/developer3000S/PoC-in-GitHub

- https://github.com/h0ffayyy/Jira-CVE-2019-8451

- https://github.com/hectorgie/PoC-in-GitHub

- https://github.com/hktalent/bug-bounty

- https://github.com/ianxtianxt/CVE-2019-8451

- https://github.com/imhunterand/JiraCVE

- https://github.com/jas502n/CVE-2019-8451

- https://github.com/jweny/pocassistdb

- https://github.com/lnick2023/nicenice

- https://github.com/merlinepedra/nuclei-templates

- https://github.com/merlinepedra25/nuclei-templates

- https://github.com/n1sh1th/CVE-POC

- https://github.com/pen4uin/awesome-vulnerability-research

- https://github.com/pen4uin/vulnerability-research

- https://github.com/pen4uin/vulnerability-research-list

- https://github.com/pwnosec/jirapwn

- https://github.com/qazbnm456/awesome-cve-poc

- https://github.com/r0eXpeR/redteam_vul

- https://github.com/rezasarvani/JiraVulChecker

- https://github.com/sevbandonmez/jira-scanner

- https://github.com/sobinge/nuclei-templates

- https://github.com/sushantdhopat/JIRA_testing

- https://github.com/woods-sega/woodswiki

- https://github.com/xbl2022/awesome-hacking-lists

- https://github.com/xbl3/awesome-cve-poc_qazbnm456