Description
Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins before 1.438, and 1.409 LTS before 1.409.3 LTS, when a stand-alone container is used, allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages.
Remediation
References
Related Vulnerabilities
WordPress Plugin Timed Popup Cross-Site Request Forgery (1.3)
Microsoft SQL Server Other Vulnerability (CVE-2000-1084)
Drupal Core 4.7.x SQL Injection (4.7.0)
WordPress Plugin iPages Flipbook For WordPress Cross-Site Scripting (1.4.2)
WordPress Plugin WP Database Reset Multiple Security Bypass Vulnerabilities (3.1)