Количество 2
Количество 2
CVE-2018-1000604
A persisted cross-site scripting vulnerability exists in Jenkins Badge Plugin 1.4 and earlier in BadgeSummaryAction.java, HtmlBadgeAction.java that allows attackers able to control build badge content to define JavaScript that would be executed in another user's browser when that other user performs some UI actions.
GHSA-3xjq-8j89-xrw9
Jenkins Badge Plugin cross-site scripting vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-1000604 A persisted cross-site scripting vulnerability exists in Jenkins Badge Plugin 1.4 and earlier in BadgeSummaryAction.java, HtmlBadgeAction.java that allows attackers able to control build badge content to define JavaScript that would be executed in another user's browser when that other user performs some UI actions. | CVSS3: 5.4 | 0% Низкий | больше 7 лет назад |
| GHSA-3xjq-8j89-xrw9 Jenkins Badge Plugin cross-site scripting vulnerability | CVSS3: 5.4 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу