Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers with administration rights to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the display url of a configured application link.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: atlassian
Published: 2018-04-10T13:00:00Z
Updated: 2024-09-17T01:56:13.508Z
Reserved: 2018-01-05T00:00:00
Link: CVE-2018-5227
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-04-10T13:29:00.447
Modified: 2024-11-21T04:08:22.723
Link: CVE-2018-5227
Redhat
No data.