The /rest/jira-ril/1.0/jira-rest/applinks resource in the crucible-jira-ril plugin in Atlassian Fisheye and Crucible before version 4.8.1 allows remote malicious users to get information about any configured Jira application links via an information disclosure vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian crucible |
||
atlassian fisheye |