-
Bug
-
Resolution: Fixed
-
Medium
-
None
-
None
-
Severity 1 - Critical
-
The version of the bundled Atlassian Application Links plugin was vulnerable to XSS. See https://ecosystem.atlassian.net/browse/APL-1361 for more details.
- is related to
-
JRASERVER-66827 The bundled Atlassian Application Links plugin had various XSS issues - CVE-2018-5227
-
- Closed
-
-
APL-1361 Loading...
-
APL-1356 Failed to load
[BAM-19708] The bundled Atlassian Application Links plugin had various XSS issues - CVE-2018-5227
Remote Link | Original: This issue links to "APL-1361 (Ecosystem Jira)" [ 360587 ] | New: This issue links to "APL-1361 (Ecosystem JIRA)" [ 360587 ] |
Workflow | Original: Bamboo Workflow 2016 v1 - Restricted [ 2635297 ] | New: JAC Bug Workflow v3 [ 3383967 ] |
Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
Symptom Severity | Original: Critical [ 14430 ] | New: Severity 1 - Critical [ 15830 ] |
Link |
New:
This issue is related to |
Labels | Original: CVE-2018-5227 advisory advisory-released bugbounty cvss-medium security security-bot-created xss | New: CVE-2018-5227 advisory advisory-released bugbounty cvss-medium patch-management security security-bot-created xss |
Labels | Original: advisory advisory-released bugbounty cvss-medium security security-bot-created xss | New: CVE-2018-5227 advisory advisory-released bugbounty cvss-medium security security-bot-created xss |
Security | Original: Reporter and Atlassian Staff [ 10751 ] |
Description | Original: Application Links needs to be updated see https://ecosystem.atlassian.net/browse/APL-1356. The affected version(s) of Application Links is/are before version 5.4.4. | New: The version of the bundled Atlassian Application Links plugin was vulnerable to XSS. See https://ecosystem.atlassian.net/browse/APL-1361 for more details. |
Labels | Original: bugbounty cvss-medium security security-bot-created xss | New: advisory advisory-released bugbounty cvss-medium security security-bot-created xss |
Summary | Original: Update application links to fix https://ecosystem.atlassian.net/browse/APL-1356 | New: The bundled Atlassian Application Links plugin had various XSS issues - CVE-2018-5227 |