CVE-2019-16564

2019-12-17T15:15:00
ID CVE-2019-16564
Type cve
Reporter cve@mitre.org
Modified 2019-12-18T20:07:00

Description

Jenkins Pipeline Aggregator View Plugin 1.8 and earlier does not escape information shown on its view, resulting in a stored XSS vulnerability exploitable by attackers able to affects view content such as job display name or pipeline stage names.