Lucene search
PRIOn knowledge basePRION:CVE-2019-1003023HistoryFeb 06, 2019 - 4:29 p.m.
Cross site scripting
2019-02-0616:29:00
PRIOn knowledge base
www.prio-n.com
2
0.001 Low
EPSS
Percentile
31.5%
A cross-site scripting vulnerability exists in Jenkins Warnings Next Generation Plugin 1.0.1 and earlier in src/main/java/io/jenkins/plugins/analysis/core/model/DetailsTableModel.java, src/main/java/io/jenkins/plugins/analysis/core/model/SourceDetail.java, src/main/java/io/jenkins/plugins/analysis/core/model/SourcePrinter.java, src/main/java/io/jenkins/plugins/analysis/core/util/Sanitizer.java, src/main/java/io/jenkins/plugins/analysis/warnings/DuplicateCodeScanner.java that allows attackers with the ability to control warnings parser input to have Jenkins render arbitrary HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| warnings_next_generation | le | 1.0.1 |
References
Related
cve
cve
CVE-2019-1003023
2022-10-03 16:19:42
osv
osv
XSS vulnerability in Jenkins Warnings Next Generation Plugin
2022-05-13 01:31:34
CVE-2019-1003023
2019-02-06 16:29:01
cvelist
cvelist
CVE-2019-1003023
2022-10-03 16:19:42
nvd
nvd
CVE-2019-1003023
2019-02-06 16:29:01
github
github
XSS vulnerability in Jenkins Warnings Next Generation Plugin
2022-05-13 01:31:34