Описание
Persistent XSS vulnerability in Jenkins OWASP Dependency-Check Plugin
The custom Details view of the Static Analysis Utilities based OWASP Dependency-Check Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view.
Пакеты
Наименование
org.jenkins-ci.plugins:dependency-check-jenkins-plugin
maven
Затронутые версииВерсия исправления
<= 2.0.1.1
2.0.1.2
Связанные уязвимости
CVSS3: 6.1
nvd
больше 8 лет назад
The custom Details view of the Static Analysis Utilities based OWASP Dependency-Check Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view.