GHSA-7vh9-vmfj-h37x
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
The Trello importer in Atlassian Jira before version 7.6.1 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF). When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information.
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: July 29, 2025 6:37 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.