Description

Jenkins before 1.502 allows remote authenticated users to configure an otherwise restricted project via vectors related to post-build actions.

Remediation

References

CVE-2013-7330

Related Vulnerabilities

WordPress Plugin GS Books Showcase Cross-Site Scripting (1.3.0)

WebLogic CVE-2022-21361 Vulnerability (CVE-2022-21361)

Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-16863)

MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-0504)

WordPress Plugin WP RSS Aggregator-News Feeds, Autoblogging, Youtube Video Feeds and More Cross-Site Scripting (4.19.3)

Severity

Medium

Classification

CVE-2013-7330 CWE-264

Tags

Missing Update Known Vulnerabilities