.. / CVE-2020-9344

Exploit for Jira Subversion ALM for Enterprise <8.8.2 - Cross-Site Scripting (CVE-2020-9344)

Description:

Jira Subversion ALM for Enterprise before 8.8.2 contains a cross-site scripting vulnerability at multiple locations.

Nuclei Template

View the template here CVE-2020-9344.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-9344.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2020-13483
https://kintosoft.atlassian.net/wiki/spaces/SVNALM/pages/753565697/Security+Bulletin
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-007.txt
https://github.com/merlinepedra/nuclei-templates
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9344