Lucene search

K
cvelistJenkinsCVELIST:CVE-2019-10432
HistoryOct 01, 2019 - 1:45 p.m.

CVE-2019-10432

2019-10-0113:45:19
jenkins
www.cve.org

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.3%

Jenkins HTML Publisher Plugin 1.20 and earlier did not escape the project and build display names in the HTML report frame, resulting in a cross-site scripting vulnerability exploitable by users able to change those.

CNA Affected

[
  {
    "product": "Jenkins HTML Publisher Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "status": "affected",
        "version": "1.20 and earlier"
      }
    ]
  }
]

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.3%

Related for CVELIST:CVE-2019-10432