2 matches found
CVE-2017-1000102
The Details view of some Static Analysis Utilities based plugins, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to these plugins, for example the console output which is parsed to extract build warnings Warnings Plugin, could insert...
CVE-2017-1000102
The CVE-2017-1000102 issue concerns the CloudBees Static Analysis Utilities plugin for Jenkins. The Details view in these plugins (notably the Warnings Plugin input parsed from console output) is vulnerable to a persisted cross-site scripting (XSS) attack. Malicious input can cause arbitrary HTML...