Lucene search
GitHub Advisory DatabaseGHSA-5J5R-6MV9-M255HistoryMar 06, 2024 - 6:30 p.m.
Jenkins Build Monitor View Plugin vulnerable to stored Cross-site Scripting
2024-03-0618:30:38
CWE-79
GitHub Advisory Database
github.com
6
jenkins
build monitor view
xss
vulnerability
stored
cross-site scripting
security
software
Jenkins Build Monitor View Plugin 1.14-860.vd06ef2568b_3f and earlier does not escape Build Monitor View names, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure Build Monitor Views.
Affected configurations
Node
wordpressdownload_monitor_pluginRange≤1.14-860.vd06ef2568b
| CPE | Name | Operator | Version |
|---|---|---|---|
| org.jenkins-ci.plugins:build-monitor-plugin | le | 1.14-860.vd06ef2568b |
Related
veracode
veracode
Cross-Site Scripting
2024-03-12 05:46:40
nvd
nvd
CVE-2024-28156
2024-03-06 17:15:10
prion
prion
Cross site scripting
2024-03-06 17:15:00
cve
cve
CVE-2024-28156
2024-03-06 17:15:10
cvelist
cvelist
CVE-2024-28156
2024-03-06 17:01:58
osv
osv
Jenkins Build Monitor View Plugin vulnerable to stored Cross-site Scripting
2024-03-06 18:30:38
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-03-06)
2024-03-07 00:00:00