Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Application Links before version 5.0.11, from version 5.1.0 before 5.2.10, from version 5.3.0 before 5.3.6, from version 5.4.0 before 5.4.12, and from version 6.0.0 before 6.0.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the applinkStartingUrl parameter. The product is used as a plugin in various Atlassian products where the following are affected: Confluence before version 6.15.2, Crucible before version 4.7.0, Crowd before version 3.4.3, Fisheye before version 4.7.0, Jira before version 7.13.3 and 8.x before 8.1.0.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Atlassian Application Links 跨站脚本漏洞
Vulnerability Description
Atlassian Application Links是澳大利亚Atlassian公司的一款使用在Atlassian产品中用于创建连接到其他应用程序中的按钮的插件。 Application Links中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。以下版本受到影响:Application Links 5.0.11之前版本,5.1.x版本,5.2.10之前的5.2.x版本,5.3.6之前的5.3.x版本,5.4.12之前的5.4.x版本,6.0.4之前的
CVSS Information
N/A
Vulnerability Type
N/A