{"vulnerability": "CVE-2023-26256", "sightings": [{"uuid": "16c61359-1dee-4cdb-b730-479860d358a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2024-11-23)", "content": "", "creation_timestamp": "2024-11-23T00:00:00.000000Z"}, {"uuid": "186fe17d-9aa6-4546-bea4-641cd8afcd54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-08-03)", "content": "", "creation_timestamp": "2025-08-03T00:00:00.000000Z"}, {"uuid": "7721354b-442b-423d-9563-6b6d06573c20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-25)", "content": "", "creation_timestamp": "2025-02-25T00:00:00.000000Z"}, {"uuid": "eb3bd988-f4af-4f96-ade6-dad92a8c07b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-06-01)", "content": "", "creation_timestamp": "2025-06-01T00:00:00.000000Z"}, {"uuid": "2a611004-31c2-4f05-869c-89cad3524120", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-11-06)", "content": "", "creation_timestamp": "2025-11-06T00:00:00.000000Z"}, {"uuid": "811b027c-0729-45e6-9285-b3dbd5763cf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-04)", "content": "", "creation_timestamp": "2026-03-04T00:00:00.000000Z"}, {"uuid": "f591fc1f-f6e3-4206-81ee-58b1699a7959", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11445", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 CVE-2023-26255 CVE-2023-26256 PoC.\n\n\u25cf The code has errors (typo) and is #untested.\n\nhttps://github.com/aodsec/CVE-2023-26256", "creation_timestamp": "2023-08-27T08:34:53.000000Z"}, {"uuid": "5e9756b9-5e07-4550-ac2a-4eefe1b596a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-17)", "content": "", "creation_timestamp": "2026-03-17T00:00:00.000000Z"}, {"uuid": "4235a9b9-692f-4a61-9d3d-64d091e23cb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4975", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-26255_POC,CVE-2023-26256_POC\nURL\uff1ahttps://github.com/aodsec/CVE-2023-26256\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-09-14T20:16:47.000000Z"}, {"uuid": "c96172ab-092a-48c5-b744-4d948d38c0ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8424", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-26256\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An unauthenticated path traversal vulnerability affects the \"STAGIL Navigation for Jira - Menu & Themes\" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjFooterNavigationConfig endpoint, it is possible to traverse and read the file system.\n\ud83d\udccf Published: 2023-02-28T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-21T20:08:22.834Z\n\ud83d\udd17 References:\n1. https://marketplace.atlassian.com/apps/1216090/stagil-navigation-for-jira-menus-themes?tab=overview&hosting=cloud\n2. https://github.com/1nters3ct/CVEs/blob/main/CVE-2023-26256.md", "creation_timestamp": "2025-03-21T20:24:45.000000Z"}, {"uuid": "ce84076a-2443-40a4-b47e-5312d1faeee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5015", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-26256_POC\nURL\uff1ahttps://github.com/csdcsdcsdcsdcsd/CVE-2023-26256\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-08-28T08:16:19.000000Z"}, {"uuid": "baf112f1-02d6-4ecc-980c-a25ae545e6df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5057", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-26255_POC,CVE-2023-26256_POC\nURL\uff1ahttps://github.com/jcad123/CVE-2023-26256\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-09-01T00:13:49.000000Z"}, {"uuid": "8d9835cc-01f0-402a-95c5-12d1639ec353", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "seen", "source": "https://t.me/ctinow/124485", "content": "https://ift.tt/ubsgTrv\nExploit Attempts for \"Stagil navigation for Jira Menus & Themes\" CVE-2023-26255 and CVE-2023-26256, (Tue, Jul 18th)", "creation_timestamp": "2023-07-18T14:26:22.000000Z"}, {"uuid": "04cd2614-6108-4ba8-834f-efc47e5f8e7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/BABATATASASA/5555", "content": "CVEs/CVE-2023-26256.md at main \u00b7 1nters3ct/CVEs \u00b7 GitHub || Url info || VulnIQ Vulnerability Intelligence\nhttps://www.vulniq.com/data/tDPGm5kofQIUdTflxULr_4AMVEA/info", "creation_timestamp": "2023-10-05T21:10:47.000000Z"}, {"uuid": "2ffc367d-4227-4bb0-bfb9-dec11d5faca7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "seen", "source": "https://t.me/arpsyndicate/2123", "content": "#ExploitObserverAlert\n\nCVE-2023-26256\n\nDESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-26256. An unauthenticated path traversal vulnerability affects the \"STAGIL Navigation for Jira - Menu", "creation_timestamp": "2023-12-23T12:35:04.000000Z"}, {"uuid": "647272f0-6180-4699-b2b8-a5a7de0e4f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "Telegram/MgRuTCrjdMjPBAr_agNgKqW7krMpBDCSY9MR_pS4VMqemw", "content": "", "creation_timestamp": "2023-08-25T14:51:15.000000Z"}, {"uuid": "094a4b2e-8a66-408b-b883-9c47b1460b8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/DailyToolz/1014", "content": "An unauthenticated path traversal vulnerability affects the \"STAGIL Navigation for Jira - Menu & Themes\" plugin before 2.0.52 for Jira\n\nhttps://github.com/jcad123/CVE-2023-26256\n\nLive target: https://rauhut-realexperts-de.swift-jira.net//plugins/servlet/snjFooterNavigationConfig?fileName=%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd&fileMime=$textMime\n\n- @DailyToolz", "creation_timestamp": "2023-09-03T07:13:28.000000Z"}, {"uuid": "5b4e9d91-b403-4584-b188-ba1894d52dde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/1091", "content": "CVE-2023-26256 \u0648 -/-/26255:\n\u0627\u0641\u0632\u0648\u0646\u0647 \u0646\u0627\u0648\u0628\u0631\u06cc STAGIL - \u0645\u0646\u0648 \u0648 \u067e\u0648\u0633\u062a\u0647\u200c\u0647\u0627 <= 2.0.52 \u0628\u0631\u0627\u06cc Jira - \u062a\u0631\u0627\u0648\u0634 \u0645\u0633\u06cc\u0631 \u0628\u062f\u0648\u0646 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a\n\u0627\u062b\u0628\u0627\u062a \u0645\u0641\u0647\u0648\u0645: https://github.com/aodsec/CVE-2023-26256\n\nCVE-2023-26256 & -/-/26255 : \nSTAGIL Navigation - Menu & Themes plugin <= 2.0.52 for Jira - Unauthenticated Path Traversal\nPOC : https://github.com/aodsec/CVE-2023-26256", "creation_timestamp": "2024-05-10T05:17:04.000000Z"}, {"uuid": "5e5f7ccc-aeb7-4893-9839-feb58167c162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "Telegram/tubAIbdOBKn5G88g_V0Q9WUtcwQ8bfNx5NVSHlH3kNzLaMM", "content": "", "creation_timestamp": "2023-08-26T14:23:26.000000Z"}, {"uuid": "ef17acef-a207-443d-8bef-d36bb2c04a6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "seen", "source": "https://t.me/cibsecurity/59106", "content": "\u203c CVE-2023-26256 \u203c\n\nAn unauthenticated path traversal vulnerability affects the \"STAGIL Navigation for Jira - Menu & Themes\" plugin before 2.0.52 for Jira. By modifying the fileName parameter to the snjFooterNavigationConfig endpoint, it is possible to traverse and read the file system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-28T18:27:47.000000Z"}, {"uuid": "df93556f-b093-4a1f-b08e-61271e8f3345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/4194", "content": "\ud83d\udcccCyberphoto AB Data Leak : https://system32.ink/cyberphoto-ab-data-leak/\n\n\ud83d\udca9Portal Danish House Students Home Malaysia Leak : https://system32.ink/portal-danish-house-students-home-malaysia-leak/\n\n\ud83d\udc38Duolingo 2023 Data Leak : https://system32.ink/duolingo-2023-data-leak/\n\n\ud83e\ude85CVE-2023-38035 POC : https://system32.ink/cve-2023-38035-poc/\n\n\ud83e\uddeeCVE-2023-26256 POC : https://system32.ink/cve-2023-26256-poc/", "creation_timestamp": "2023-08-25T14:50:16.000000Z"}, {"uuid": "14df8beb-184b-448c-a307-e742ded33d34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8912", "content": "#exploit\n1. CVE-2023-38035:\nIvanti Sentry PoC\nhttps://github.com/horizon3ai/CVE-2023-38035\n\n2. CVE-2023-26256:\nSTAGIL Navigation for Jira - Menu & Themes Path Traversal\nhttps://github.com/aodsec/CVE-2023-26256\n\n3. CVE-2023-38831:\nWinRAR Vulnerability Exploited\nhttps://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day", "creation_timestamp": "2023-08-25T21:02:57.000000Z"}, {"uuid": "d07e7b82-0bd4-40f0-a032-703b4d0ea2a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26256", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-30)", "content": "", "creation_timestamp": "2026-04-30T00:00:00.000000Z"}]}