Vulnerabilities

GHSA-xjgw-4wvw-rgm4

MCP Atlassian has an arbitrary file write leading to arbitrary code execution via unconstrained download_path in confluence_download_attachment

10 Mar

GHSA-7r34-79r5-rcc9

MCP Atlassian has SSRF via unvalidated X-Atlassian-Jira-Url / X-Atlassian-Confluence-Url headers

10 Mar