Description
Cross-site scripting (XSS) vulnerability in java/hudson/model/Cause.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to inject arbitrary web script or HTML via a "remote cause note."
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2020-2968 Vulnerability (CVE-2020-2968)
WordPress Improper Input Validation Vulnerability (CVE-2013-4339)
MySQL CVE-2017-3463 Vulnerability (CVE-2017-3463)
WordPress Plugin WP Super Cache Cross-Site Scripting (1.7.2)
WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Vulnerabilities (1.7.6)