Security Advisory

CVE-2018-1000202

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-05 21:00:00

Last updated 2024-09-17 01:35:40

Assigner mitre

State PUBLISHED

Description

A persisted cross-site scripting vulnerability exists in Jenkins Groovy Postbuild Plugin 2.3.1 and older in various Jelly files that allows attackers able to control build badge content to define JavaScript that would be executed in another users browser when that other user performs some UI actions.

← Browse all CVEs View on cve.org ↗