CVE-2017-16860
The CVE-2017-16860 issue affects Atlassian Application Links. The invalidRedirectUrl template in Application Links allows remote attackers to inject arbitrary HTML/JavaScript via the redirectUrl parameter in the redirect warning message, leading to cross-site scripting (XSS). Affected versions ar...