cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-20239,https://securityvulnerability.io/vulnerability/CVE-2018-20239,Cross-Site Scripting Vulnerability in Atlassian Application Links Plugin,"The Atlassian Application Links plugin, utilized by several Atlassian products, is susceptible to a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary HTML or JavaScript through the applinkStartingUrl parameter. This issue affects numerous products including Confluence, Crucible, Crowd, Fisheye, and Jira, posing a significant security concern for users on the specified versions.",Atlassian,Atlassian Application Links,5.4,MEDIUM,0.00343999988399446,false,,false,false,false,,,false,false,,2019-04-30T16:29:00.000Z,0
CVE-2018-5227,https://securityvulnerability.io/vulnerability/CVE-2018-5227,,Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers with administration rights to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the display url of a configured application link.,Atlassian,Atlassian Application Links,4.8,MEDIUM,0.0005499999970197678,false,,false,false,false,,,false,false,,2018-04-10T00:00:00.000Z,0
CVE-2017-18096,https://securityvulnerability.io/vulnerability/CVE-2017-18096,,"The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 before 5.4.3 allows remote attackers with administrative rights to access the content of internal network resources via a Server Side Request Forgery (SSRF) by creating an OAuth application link to a location they control and then redirecting access from the linked location's OAuth status rest resource to an internal location. When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information.",Atlassian,Atlassian Application Links,7.2,HIGH,0.002950000111013651,false,,false,false,false,,,false,false,,2018-04-04T00:00:00.000Z,0