4 matches found
GHSA-H3V9-46PP-H33W Cross-site Scripting in Jenkins Multiselect parameter Plugin
Jenkins Multiselect parameter Plugin 1.3 and earlier does not escape the name and description of Multiselect parameters on views displaying parameters. This results in stored cross-site scripting XSS vulnerabilities exploitable by attackers with Item/Configure permission. Exploitation of this...
CVE-2022-30964
Jenkins Multiselect parameter Plugin 1.3 and earlier does not escape the name and description of Multiselect parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-30964
The CVE-2022-30964 entry describes a stored XSS vulnerability in Jenkins Multiselect Parameter Plugin (versions up to 1.3). Root cause: the plugin fails to escape the name and description of Multiselect parameters on views that display parameters. Impact: exploitable by attackers with Item/Config...
Jenkins Multiselect parameter Plugin 跨站脚本漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plug-ins to support building, deploying, and automating any project. Jenkins Multiselect parameter Plugin 1.3 and earlier versions have a cross-si...