org.jenkins-ci.plugins:vectorcast-execution (>=0.16 <=0.61) potentially affected by CVE-2018-1000202 via org.jvnet.hudson.plugins:groovy-postbuild (=2.3)

org.jvnet.hudson.plugins:groovy-postbuild MAVEN version =2.3 is affected by a known vulnerability. The following packages have a transitive dependency on org.jvnet.hudson.plugins:groovy-postbuild and may be impacted: - org.jenkins-ci.plugins:vectorcast-execution =0.16, =0.61 Source cves:...

Cross-Site Scripting (XSS)

Groovy Postbuild is vulnerable to cross-site scripting XSS. The vulnerability can happen when a malicious input for badge content is passed without XSS-string escaping...