2 matches found
CVE-2019-10410
Jenkins Log Parser Plugin 2.0 and earlier did not escape an error message, resulting in a cross-site scripting vulnerability exploitable by users able to define log parsing rules...
CVE-2019-10410
The CVE-2019-10410 entry concerns Jenkins Log Parser Plugin, affected at versions 2.0 and earlier. The root cause is that an error message was not escaped, enabling cross-site scripting when a user can define log parsing rules. The vulnerability impact is visible in the documentation as a persist...