Multiple Atlassian products suffer from persistent cross site scripting vulnerabilities. Vulnerable products include PlantUML version 6.43, Refined Toolkit for Confluence version 2.2.5, Linking for Confluence version 5.5.3, Countdown Timer version 1.7.0, and Server Status version 1.2.1.
ce9579674629da339f235d6da72456d507989a8ca7f24f0714d41988b64f5ec5
Afian AB FileRun version 2017.03.18 suffers from cross site request forgery, cross site scripting, open redirection, remote shell upload, and various other vulnerabilities.
2826127ad7fe9509d7f398e13bb1fdb75d324125493456d998e4d7e25c350413