Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2020/09/23 12:46 p.m.8 views

jenkins: Stored XSS vulnerability in upstream cause

A flaw was found in Jenkins versions 2.244 and prior and in LTS 2.235.1 and prior. The upstream job's display name is not escaped on build time trend pages which could lead to a stored cross-site scripting XSS vulnerability. The user must have the Agent/Configure permission for this exploit to...

5.4CVSS5.9AI score0.01077EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/09/16 12:0 a.m.5 views

PT-2020-15481 · Jenkins · Jenkins Pipeline Maven Integration Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Pipeline Maven Integration Plugin versions 3.9.2 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because the upstream job's display name shown as part of a build cause is not...

5.4CVSS5.1AI score0.00735EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/08/25 6:10 a.m.2 views

jenkins: Stored XSS vulnerability in upstream cause

A flaw was found in Jenkins versions 2.244 and prior and in LTS 2.235.1 and prior. The upstream job's display name is not escaped on build time trend pages which could lead to a stored cross-site scripting XSS vulnerability. The user must have the Agent/Configure permission for this exploit to...

5.4CVSS5.9AI score0.01077EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/24 2:53 p.m.4 views

jenkins: Stored XSS vulnerability in upstream cause

A flaw was found in Jenkins versions 2.244 and prior and in LTS 2.235.1 and prior. The upstream job's display name is not escaped on build time trend pages which could lead to a stored cross-site scripting XSS vulnerability. The user must have the Agent/Configure permission for this exploit to...

5.4CVSS5.9AI score0.01077EPSS
Exploits0References4
Rows per page
Query Builder