Known Vulnerabilities for Application Links by Atlassian

Listed below are 7 of the newest known vulnerabilities associated with the software "Application Links" by "Atlassian".

These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-41113 TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the n... 8.8 - HIGH 2021-10-05 2021-10-05
CVE-2021-25961 In “SuiteCRM” application, v7.1.7 through v7.10.31 and v7.11-beta through v7.11.20 fail to properly invalidate password r... 8 - HIGH 2021-09-29 2021-09-29
CVE-2019-20105 The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before ve... 4.9 - MEDIUM 2020-03-17 2020-08-24
CVE-2019-15011 The ListEntityLinksServlet resource in Application Links before version 5.0.12, from version 5.1.0 before version 5.2.11, fro... 4.3 - MEDIUM 2019-12-17 2019-12-30
CVE-2018-20239 Application Links before version 5.0.11, from version 5.1.0 before 5.2.10, from version 5.3.0 before 5.3.6, from version 5.4.... 5.4 - MEDIUM 2019-04-30 2019-05-29
CVE-2018-5227 Various administrative application link resources in Atlassian Application Links before version 5.4.4 allow remote attackers ... 4.8 - MEDIUM 2018-04-10 2018-05-16
CVE-2017-18111 The OAuthHelper in Atlassian Application Links before version 5.0.10, from version 5.1.0 before version 5.1.3, and from versi... 8.7 - HIGH 2019-03-29 2019-04-01
CVE-2017-18096 The OAuth status rest resource in Atlassian Application Links before version 5.2.7, from 5.3.0 before 5.3.4 and from 5.4.0 be... 7.2 - HIGH 2018-04-04 2018-05-10
CVE-2017-16860 The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 ... 6.1 - MEDIUM 2018-05-14 2018-06-19

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationAtlassianApplication Links7.1.0AllAllAll
ApplicationAtlassianApplication Links7.0.0AllAllAll
ApplicationAtlassianApplication Links6.1.2AllAllAll
ApplicationAtlassianApplication Links6.1.1AllAllAll
ApplicationAtlassianApplication Links6.1.0AllAllAll
ApplicationAtlassianApplication Links6.0.9AllAllAll
ApplicationAtlassianApplication Links6.0.6AllAllAll
ApplicationAtlassianApplication Links6.0.5AllAllAll
ApplicationAtlassianApplication Links6.0.4AllAllAll
ApplicationAtlassianApplication Links6.0.3AllAllAll
ApplicationAtlassianApplication Links6.0.2AllAllAll
ApplicationAtlassianApplication Links6.0.12AllAllAll
ApplicationAtlassianApplication Links6.0.11AllAllAll
ApplicationAtlassianApplication Links6.0.1AllAllAll
ApplicationAtlassianApplication Links6.0.0AllAllAll
ApplicationAtlassianApplication Links5.4.7AllAllAll
ApplicationAtlassianApplication Links5.4.6AllAllAll
ApplicationAtlassianApplication Links5.4.5AllAllAll
ApplicationAtlassianApplication Links5.4.4AllAllAll
ApplicationAtlassianApplication Links5.4.3AllAllAll

Popular searches for Application Links

OAuth security for application links | Application Links Data Center and Server 7.1 | Atlassian Documentation

confluence.atlassian.com/applinks/oauth-security-for-application-links-774045732.html

Auth security for application links | Application Links Data Center and Server 7.1 | Atlassian Documentation Application inks Auth authorization protocol. Can be used where the applications have different userbases so a user can have different accounts on each application . Note that Atlassian 3 1 / OAuth with impersonation can only be used for application Atlassian applications.

confluence.atlassian.com/applinks/configuring-authentication-for-an-application-link-774243534.html confluence.atlassian.com/display/APPLINKS/Configuring+authentication+for+an+application+link confluence.atlassian.com/applinks/configuring-oauth-authentication-for-an-application-link-221447912.html confluence.atlassian.com/display/APPLINKS/OAuth+security+for+application+links Application software OAuth Atlassian User (computing) Authentication Documentation Server (computing) Authorization Login Access token Data center Computer security Links (web browser) Jira (software) Communication protocol File system permissions Hypertext Transfer Protocol Software Technical standard Hyperlink

Application Links Documentation | Application Links Data Center and Server 7.1 | Atlassian Documentation

confluence.atlassian.com/display/APPLINKS/Application+Links+Documentation

Application Links Documentation | Application Links Data Center and Server 7.1 | Atlassian Documentation See what's new with app See at a glance the status of We only recommend OAuth authentication for new application inks

confluence.atlassian.com/applinks/application-links-documentation-165120834.html confluence.atlassian.com/applinks/application-links-user-guide-770608443.html confluence.atlassian.com/display/APPLINKS/Configuring+Application+Links Application software Documentation Atlassian Links (web browser) Server (computing) OAuth Data center Jira (software) Authentication Software documentation Confluence (software) Hyperlink Application layer Troubleshooting Service management Software Bitbucket Viewport Mobile app Issue tracking system

© CVE.report 2021 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report