PT-2021-14662 · Jenkins · Jenkins Claim Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Claim Plugin versions 2.18.1 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. It occurs because the Jenkins Claim Plugin does not escape the user display name, allowing attackers who ca...