Security Advisory
CVE-2021-21666
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Jenkins Kiuwan Plugin 1.6.0 and earlier does not escape query parameters in an error message for a form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.