Open JIRA Signup

Category: [Initial Access]

module name: check_open_jira_signup

url: http://jira/secure/Signup!default.jspa

If this page is open and you can sign up, it can give you initial access to the JIRA system. Once in, you can pilfer the various JIRA projects and attempt other exploits/info gathering.

INFO: Checking for Open JIRA Signup

+ Open Signup Page Found: Manual exploitation required [try to signup and log in]
  URL: http://jira/secure/Signup!default.jspa
  Note: Exploitation requires manual steps.

Open Signup Page

Something else

Browsing all user after login