7 matches found
BIT-JENKINS-2023-27898
Jenkins LTS 2.277.1 through 2.375.3 both inclusive does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able t...
Jenkins: XSS vulnerability in plugin manager
A flaw was found in Jenkins. Affected versions of Jenkins do not escape the Jenkins version that a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins in the plugin manager. This issue results in a stored Cross-site scripting XSS...
Jenkins: XSS vulnerability in plugin manager
A flaw was found in Jenkins. Affected versions of Jenkins do not escape the Jenkins version that a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins in the plugin manager. This issue results in a stored Cross-site scripting XSS...
GHSA-J664-QHH4-HPF8 Cross-site Scripting vulnerability in Jenkins
Jenkins 2.270 through 2.393 both inclusive, LTS 2.277.1 through 2.375.3 both inclusive does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting XSS...
CVE-2023-27898
Jenkins 2.270 through 2.393 both inclusive, LTS 2.277.1 through 2.375.3 both inclusive does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting XSS...
PT-2023-2258 · Jenkins · Jenkins
Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.270 through 2.393 Jenkins LTS versions 2.277.1 through 2.375.3 Description: The issue is related to errors in handling HTTP headers, which can allow a remote attacker to perform cross-site scripting XSS attacks. The...
Fedora 23 : wordpress (2016-cf91320535)
WordPress 4.5.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. See the Release announcement ---- Version 4.5.1 of WordPress is available and fixes 12 bugs. See Release announcement Note that Tenable Network...