Back to search
CVE-2018-5227
Published: Apr 10, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers with administration rights to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the display url of a configured application link.
| Vendor | Product | Versions |
|---|---|---|
Atlassian | Atlassian Application Links | affected unspecified - < 5.4.4 |
References
https://ecosystem.atlassian.net/browse/APL-1361
x_refsource_CONFIRM
103731
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now