Cross-Site Scripting Vulnerability in Atlassian Application Links
CVE-2018-5227
4.8MEDIUM
What is CVE-2018-5227?
A vulnerability exists in Atlassian Application Links prior to version 5.4.4 where remote attackers, possessing administrative privileges, can exploit a cross-site scripting (XSS) flaw. This allows for the injection of arbitrary HTML or JavaScript, potentially leading to unauthorized actions within the context of the affected application link, thereby compromising the security of web applications integrated with Atlassian tools.
Affected Version(s)
Atlassian Application Links < 5.4.4