Description
Cross-site scripting (XSS) vulnerability in Jenkins before 1.454, Jenkins LTS before 1.424.5, and Jenkins Enterprise 1.400.x before 1.400.0.13 and 1.424.x before 1.424.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0324.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2014-2413 Vulnerability (CVE-2014-2413)
Beego Framework CVE-2022-31259 Vulnerability (CVE-2022-31259)
WordPress Plugin Import any XML or CSV File to WordPress Pro Arbitrary File Upload (4.1.0)
MySQL CVE-2014-6496 Vulnerability (CVE-2014-6496)
Moodle Improper Access Control Vulnerability (CVE-2016-3729)