com.cloudbees.jenkins.plugins:custom-tools-plugin (=0.1), com.coravy.hudson.plugins.github:github (>=0.5 <=0.8) +262 more potentially affected by CVE-2011-4344 via org.jenkins-ci.main:jenkins-core (>=1.396 <=1.409.2)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =0.5, =0.1, =1.2.2, =1.2.2, =2.3.0, =1.4, =1.8, =0.15, =0.16, =0.12, =0.11, =0.11, =0.11.2 and more Source cves: CVE-2011-4344 Source advisory: OSV:GHSA-Q3RP-555R-HH6R...

Jenkins Winstone Servlet Cross Site Scripting Vulnerability (Nov 2011) - Linux

Jenkins is prone to a cross-site scripting vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jenkins:jenkins";...

CVE-2011-4344

Cross-site scripting XSS vulnerability in Jenkins Core in Jenkins before 1.438, and 1.409 LTS before 1.409.3 LTS, when a stand-alone container is used, allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages...

CVE-2011-4344

CVE-2011-4344 is a cross-site scripting (XSS) vulnerability in Jenkins Core affecting Jenkins versions prior to 1.438 and 1.409 LTS prior to 1.409.3 LTS when using a stand-alone container. The issue allows remote attackers to inject arbitrary web script or HTML via error message vectors. The prov...