Security Advisory

CVE-2018-1000413

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-01-09 23:00:00

Last updated 2024-08-05 12:40:46

Assigner mitre

State PUBLISHED

Description

A cross-site scripting vulnerability exists in Jenkins Config File Provider Plugin 3.1 and earlier in configfiles.jelly, providerlist.jelly that allows users with the ability to configure configuration files to insert arbitrary HTML into some pages in Jenkins.

← Browse all CVEs View on cve.org ↗