2 matches found
PT-2020-15435 · Jenkins · Jenkins Link Column Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Link Column Plugin versions 1.0 and earlier Description: The issue concerns a stored cross-site scripting vulnerability. It allows users with View/Configure permission to create links that can execute JavaScript code due to the lack o...
CVE-2020-11094
The October CMS debugbar plugin before version 3.1.0 contains a feature where it will log all requests and all information pertaining to each request including session data whenever it is enabled. This presents a problem if the plugin is ever enabled on a system that is open to untrusted users as...