CVE-2018-5227
10.04.2018, 13:29
Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers with administration rights to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the display url of a configured application link.
| Vendor | Product | Version |
|---|---|---|
| atlassian | application_links | 𝑥 < 5.4.4 |
𝑥
= Vulnerable software versions