Описание
XSS vulnerability in Jenkins Audit Trail Plugin
Jenkins Audit Trail Plugin 3.2 and earlier does not escape the error message for the URL Patterns field form validation, resulting in a reflected cross-site scripting vulnerability. Audit Trail Plugin 3.3 escapes the affected part of the error message.
Пакеты
Наименование
org.jenkins-ci.plugins:audit-trail
maven
Затронутые версииВерсия исправления
<= 3.2
3.3
Связанные уязвимости
CVSS3: 6.1
nvd
почти 6 лет назад
Jenkins Audit Trail Plugin 3.2 and earlier does not escape the error message for the URL Patterns field form validation, resulting in a reflected cross-site scripting vulnerability.