Lucene search
PRIOn knowledge basePRION:CVE-2023-39151HistoryJul 26, 2023 - 2:15 p.m.
Cross site scripting
2023-07-2614:15:00
PRIOn knowledge base
www.prio-n.com
6
jenkins
cross site scripting
build logs
hyperlinks
security vulnerability
0.001 Low
EPSS
Percentile
41.0%
Jenkins 2.415 and earlier, LTS 2.401.2 and earlier does not sanitize or properly encode URLs in build logs when transforming them into hyperlinks, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control build log contents.
Related
cvelist
cvelist
CVE-2023-39151
2023-07-26 13:54:52
osv
osv
Jenkins Stored Cross-site Scripting vulnerability
2023-07-26 15:30:57
BIT-jenkins-2023-39151
2024-03-06 10:55:13
CVE-2023-39151
2023-07-26 14:15:10
nessus
nessus
nvd
nvd
CVE-2023-39151
2023-07-26 14:15:10
redhatcve
redhatcve
CVE-2023-39151
2023-07-27 06:47:55
veracode
veracode
Cross-site Scripting (XSS)
2023-07-28 02:45:44
freebsd
freebsd
jenkins -- Stored XSS vulnerability
2023-07-26 00:00:00
alpinelinux
alpinelinux
CVE-2023-39151
2023-07-26 14:15:10
cve
cve
CVE-2023-39151
2023-07-26 14:15:10
github
github
Jenkins Stored Cross-site Scripting vulnerability
2023-07-26 15:30:57
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00