Headline

GHSA-mv77-fj63-q5w8: Stored XSS vulnerability in Jenkins GitHub Plugin

Jenkins GitHub Plugin 1.37.3 and earlier does not escape the GitHub project URL on the build page when showing changes, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.

1 year ago

ghsa

Open in Source

#xss #vulnerability #git

Stored XSS vulnerability in Jenkins GitHub Plugin

High severity GitHub Reviewed Published Oct 25, 2023 to the GitHub Advisory Database • Updated Oct 30, 2023

1 year ago

CVE

Open in Source

#xss #vulnerability #web #mac #windows #google #linux #git #php #auth

ghsa: Latest News

GHSA-8fh4-942r-jf2g: LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.php

2 days ago

ghsa

GHSA-7q7g-4xm8-89cq: Regular Expression Denial of Service (ReDoS) in @eslint/plugin-kit

2 days ago

ghsa

GHSA-phm4-wf3h-pc3r: Unpatched Remote Code Execution in Gogs

3 days ago

ghsa

GHSA-x645-6pf9-xwxw: LibreNMS has an Authenticated OS Command Injection

3 days ago

ghsa

GHSA-gv4m-f6fx-859x: LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php

3 days ago

ghsa

Headline

GHSA-mv77-fj63-q5w8: Stored XSS vulnerability in Jenkins GitHub Plugin

Related news

ghsa: Latest News