12 matches found
CVE-2021-21613
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
GHSA-XMW5-45V9-PXQX XSS vulnerability in Jenkins TICS Plugin
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses. This results in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content. Jenkins TICS Plugin 2020.3.0.7 escapes TICS service responses, or strips HTML out, as...
XSS vulnerability in Jenkins TICS Plugin
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses. This results in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content. Jenkins TICS Plugin 2020.3.0.7 escapes TICS service responses, or strips HTML out, as...
CloudBees Jenkins Cross-Site Scripting Vulnerability (CNVD-2021-07539)
CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A cross-site scripting...
CVE-2021-21613
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
CVE-2021-21613
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
Cross site scripting
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
CVE-2021-21613
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
CVE-2021-21613
CVE-2021-21613 affects the Jenkins TICS Plugin up to 2020.3.0.6. The issue is that the plugin does not escape TICS service responses, enabling cross-site scripting (XSS) if an attacker can control the response content. A fix is available: Jenkins TICS Plugin 2020.3.0.7 escapes or strips HTML in T...
CVE-2021-21613
Jenkins TICS Plugin 2020.3.0.6 and earlier does not escape TICS service responses, resulting in a cross-site scripting XSS vulnerability exploitable by attackers able to control TICS service response content...
PT-2021-14656 · Jenkins · Jenkins Metrics Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins TICS Plugin versions 2020.3.0.6 and earlier Description: The issue results in a cross-site scripting XSS vulnerability, which is exploitable by attackers able to control TICS service response content. This occurs because the plugin do...
CloudBees Jenkins TICS Plugin 跨站脚本漏洞
CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A cross-site scripting...