Lucene search
MitreCVELIST:CVE-2018-1000144HistoryOct 03, 2022 - 4:21 p.m.
CVE-2018-1000144
2022-10-0316:21:59
mitre
www.cve.org
jenkins
cucumber
vulnerability
cross site scripting
content security policy
attackers
cve-2018-1000144
0.001 Low
EPSS
Percentile
31.3%
A cross site scripting vulnerability exists in Jenkins Cucumber Living Documentation Plugin 1.0.12 and older in CukedoctorBaseAction#doDynamic that disables the Content-Security-Policy protection for archived artifacts and workspace files, allowing attackers able to control the content of these files to attack Jenkins users.
Related
cve
cve
CVE-2018-1000144
2022-10-03 16:21:59
github
github
nvd
nvd
CVE-2018-1000144
2018-04-05 13:29:00
osv
osv
CVE-2018-1000144
2018-04-05 13:29:00
prion
prion
Cross site scripting
2018-04-05 13:29:00