Stagil Navigation vulnerabilities
2 known vulnerabilities affecting stagil/stagil_navigation.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
2
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2023-26255P1HIGHCVSS 7.5ExploitedPoCfixed in 2.0.522023-02-28
CVE-2023-26255 [HIGH] CWE-22 CVE-2023-26255: An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & The
An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & Themes" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjCustomDesignConfig endpoint, it is possible to traverse and read the file system.
nvd
CVE-2023-26256P1HIGHCVSS 7.5ExploitedPoCfixed in 2.0.522023-02-28
CVE-2023-26256 [HIGH] CWE-22 CVE-2023-26256: An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & The
An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu & Themes" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjFooterNavigationConfig endpoint, it is possible to traverse and read the file system.
nvd