2 matches found
GHSA-WR6P-J63R-XQHV Jenkins allows Data Insertion and Execution of Code by those with Read and HTTP Access
Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code...
GHSA-X97G-3GP9-CF2P Jenkins allows Cross-Site Scripting (XSS) via Crafted URL
Cross-site Scripting XSS in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL that points to Jenkins...