6 matches found
EUVD-2022-5484
Malicious code in bioql PyPI...
GHSA-W3R4-VX9W-F7P7 Jenkins Job Config History Plugin reflected XSS vulnerability
A reflected cross-site scripting vulnerability exists in Jenkins Job Config History Plugin 2.18 and earlier in all Jelly files that shows arbitrary attacker-specified HTML in Jenkins to users with Job/Configure access...
CloudBees Jenkins Job Config History Plugin Cross-Site Scripting Vulnerability
CloudBees Jenkins formerly known as Hudson Labs is a set of Java-based continuous integration tools , which is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks . Job Config History Plugin is used in one of the plug-in to save a copy...
CVE-2018-1000416
A reflected cross-site scripting vulnerability exists in Jenkins Job Config History Plugin 2.18 and earlier in all Jelly files that shows arbitrary attacker-specified HTML in Jenkins to users with Job/Configure access...
CVE-2018-1000416
A reflected cross-site scripting vulnerability exists in Jenkins Job Config History Plugin 2.18 and earlier in all Jelly files that shows arbitrary attacker-specified HTML in Jenkins to users with Job/Configure access...
CVE-2018-1000416
The CVE-2018-1000416 entry concerns Jenkins Job Config History Plugin (versions up to 2.18) with a reflected cross-site scripting (XSS) flaw in all Jelly files that allows an attacker to inject arbitrary HTML into Jenkins output shown to users who have Job/Configure access. This is a client-side ...