Description
Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL that points to Jenkins.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server CVE-2023-21705 Vulnerability (CVE-2023-21705)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2079)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7857)
WordPress Plugin WP Image Zoom Denial of Service (1.23)
Mailman Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-44227)