How to leverage jira local file read to read sensitive files [closed]
I was pentesting a jira website and came across this https://example.com/s/bvbvbnnb/_/;/WEB-INF/web.xml, which was vulnerable to CVE-2021-26086.
With this CVE I tried reading https://example.com/s/bvbvbnnb/_/;/WEB-INF/dbconfig.xml and h… Continue reading How to leverage jira local file read to read sensitive files [closed]