Jenkins Environment Dashboard Plugin Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exists in Jenkins Environment Dashboard Plugin 1.1.10 and prior versions, which stems from the plugin’s failure to The vulnerability is caused by the plugin’s failure to escape and filter environment order and component order configuration values in its view. An attacker with view/configuration privileges could exploit this vulnerability to cause a stored cross-site scripting attack.