Jenkins and Jenkins Plugin are both products of Jenkins, which is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building and deploying projects, and the Jenkins List Git Branches Parameter Plugin 0.0.9 and earlier is vulnerable to a cross-site scripting vulnerability caused by the plugin’s failure to escape the names of List Git Branchs parameter names. An attacker with view/configuration privileges could exploit this vulnerability to cause a stored cross-site scripting attack.
CPE | Name | Operator | Version |
---|---|---|---|
jenkins list git branches parameter plugin | le | 0.0.9 |