Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2023-25761

🗓️ 15 Feb 2023 14:13:15Reported by jenkinsType 
cve
 cve🔗 web.nvd.nist.gov👁 207 Views

Jenkins JUnit Plugin 1166.va_436e268e972 and earlier does not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
OSV		Cross-site Scripting in Jenkins JUnit Plugin
15 Feb 202315:30
osv
OSV		CVE-2023-25761
15 Feb 202314:15
osv
OSV		RHSA-2023:1866 Red Hat Security Advisory: OpenShift Container Platform 4.10.58 security update
16 Sep 202410:50
osv
OSV		RHSA-2023:3195 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
30 Sep 202407:07
osv
OSV		RHSA-2023:7288 Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 Openshift Jenkins security update
1 Oct 202423:31
osv
OSV		RHSA-2023:6179 Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update
2 Oct 202411:28
osv
OSV		RHSA-2024:0776 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
30 Sep 202407:10
osv
OSV		RHSA-2023:6171 Red Hat Security Advisory: Red Hat Product OCP Tools 4.11 Openshift Jenkins security update
2 Oct 202411:28
osv
OSV		RHSA-2023:6172 Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 Openshift Jenkins security update
2 Oct 202411:28
osv
OSV		RHSA-2024:0775 Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
30 Sep 202416:32
osv
Rows per page
Nvd
Node
jenkinsjunitRange1166.va_436e268e972jenkins
[
  {
    "product": "Jenkins JUnit Plugin",
    "vendor": "Jenkins Project",
    "versions": [
      {
        "lessThanOrEqual": "1166.va_436e268e972",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "1119.1124.va_a_8ccde5658f"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
15 Feb 2023 14:15Current
5Medium risk
Vulners AI Score5
CVSS35.4
EPSS0.0005
SSVC
CWE-79
cve-2023-25761jenkinsjunit plugincross-site scriptingxssjavascriptsecurity vulnerabilitynvd
207
.json
Report