6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.0%
Jenkins is vulnerable to Cross-site scripting (XSS). The vulnerability is due to improper handling of workspaces and archived artifacts, allowing remote authenticated users to inject arbitrary web scripts or HTML.
github.com/advisories/GHSA-x3p3-929j-pq66
www.jenkins.io/security/advisory/2015-12-09/