CVE-2017-9506

Published: 2017-08-23T19:29Z

Last Modified: 2024-11-21T03:36Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The IconUriServlet of the Atlassian OAuth Plugin from version 1.3.0 before version 1.9.12 and from version 2.0.0 before version 2.0.4 allows remote attackers to access the content of internal network resources and/or perform an XSS attack via Server Side Request Forgery (SSRF). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt