CVE-2021-21660

Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter...

CVE-2021-21660

Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter...

CVE-2021-21660

Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter...

CVE-2021-21660

The CVE-2021-21660 entry concerns Jenkins Markdown Formatter Plugin versions 0.1.0 and earlier. The vulnerability arises because the plugin does not sanitize crafted link target URLs, causing a stored cross-site scripting (XSS) flaw. Exploitation requires the attacker to have the ability to edit ...

Jenkins 跨站脚本漏洞

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A cross-site scripting...

PT-2021-14703 · Jenkins · Jenkins Markdown Formatter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Markdown Formatter Plugin versions 0.1.0 and earlier Description: The issue results from the plugin's failure to sanitize crafted link target URLs, leading to a stored cross-site scripting XSS vulnerability. This vulnerability can be...