Jenkins Extended Choice Parameter Plugin Cross-Site Scripting Vulnerability

Jenkins and Jenkins Plugin are both products of Jenkins. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. The vulnerability stems from the plugin’s failure to escape the value and description of an Extended Choice parameter of parameter type Radio Buttons or Check Boxes, which could be exploited to cause a stored cross-site scripting attack.