CVE-2017-2610

2018-05-15T21:29:00
ID CVE-2017-2610
Type cve
Reporter cve@mitre.org
Modified 2019-10-09T23:26:00

Description

jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting in search suggestions due to improperly escaping users with less-than and greater-than characters in their names (SECURITY-388).