2 matches found
CVE-2019-10374
A stored cross-site scripting vulnerability in Jenkins PegDown Formatter Plugin 1.3 and earlier allows attackers able to edit descriptions and other fields rendered using the configured markup formatter to insert links with the javascript scheme into the Jenkins UI...
CVE-2019-10374
The CVE-2019-10374 issue affects Jenkins PegDown Formatter Plugin (versions 1.3 and earlier). A stored cross-site scripting vulnerability arises because users able to edit descriptions or other fields rendered by the configured markup formatter can inject links using the javascript: scheme into t...