3 matches found
CVE-2023-33007
Jenkins LoadComplete support Plugin 1.0 and earlier does not escape the LoadComplete test name, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2023-33007
Jenkins LoadComplete support Plugin 1.0 and earlier does not escape the LoadComplete test name, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2023-33007
CVE-2023-33007 concerns the Jenkins LoadComplete support Plugin (version 1.0 and earlier). The vulnerability arises from not escaping the LoadComplete test name in the plugin’s UI, creating a stored XSS condition that is exploitable by attackers who have Item/Configure permission. Public referenc...