CVE-2024-28156
CVE-2024-28156 affects Jenkins Build Monitor View Plugin (versions ≤ 1.14-860.vd06ef2568b_3f). The root cause is that Build Monitor View names are not escaped, which enables stored cross-site scripting (XSS) when an attacker can configure Build Monitor Views. Multiple sources corroborate: Red Hat...