Security Advisory

CVE-2021-21666

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-10 14:25:22
Last updated 2024-08-03 18:23:27
Assigner jenkins
State PUBLISHED

Description

Jenkins Kiuwan Plugin 1.6.0 and earlier does not escape query parameters in an error message for a form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.