Описание
Jenkins Monitoring Plugin allows Cross-Site Scripting (XSS)
Cross-site scripting (XSS) vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-3678
- https://github.com/jenkinsci/monitoring-plugin/commit/f0f6aeef2032696c97d4b015dd51fa2b841b0473
- https://access.redhat.com/errata/RHBA-2014:1630
- https://access.redhat.com/security/cve/CVE-2014-3678
- https://bugzilla.redhat.com/show_bug.cgi?id=1147760
- https://wiki.jenkins-ci.org/display/JENKINS/Monitoring
- https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01
Пакеты
Наименование
org.jvnet.hudson.plugins:monitoring
maven
Затронутые версииВерсия исправления
< 1.53.0
1.53.0
Связанные уязвимости
redhat
больше 11 лет назад
Cross-site scripting (XSS) vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
больше 11 лет назад
Cross-site scripting (XSS) vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.