Cross Site Scripting(XSS)

@rspack/core is vulnerable to Cross Site ScriptingXSS. The vulnerability is due to a DOM Clobbering gadget in the AutoPublicPathRuntimeModule, which allows unsanitized attacker-controlled HTML elements to lead to XSS attacks...

Cross-site Scripting in Jenkins

A cross-site scripting vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/Api.java that allows attackers to specify URLs to Jenkins that result in rendering arbitrary attacker-controlled HTML by Jenkins...