CVE-2021-21628
The CVE-2021-21628 case concerns Jenkins Build With Parameters Plugin (versions ≤ 1.5). The underlying issue is that parameter names and descriptions are not escaped, enabling stored XSS. The vulnerability can be exploited by attackers who have Job/Configure permission. Public writeups from OSV a...