Description
The Trello importer in Atlassian Jira before version 7.6.1 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF). When running in an environment like Amazon EC2, this flaw maybe used to access to a metadata resource that provides access credentials and other potentially confidential information.
Remediation
References
Related Vulnerabilities
WordPress Plugin Groups Multiple Cross-Site Scripting Vulnerabilities (1.8.0)
WordPress Plugin BibleGet I/O Unspecified Vulnerability (3.4)
PHP Other Vulnerability (CVE-2001-1385)
WordPress Plugin Brizy-Page Builder Multiple Vulnerabilities (2.4.43)
WordPress Plugin Link Library 'searchll' Parameter SQL Injection (5.2.1)