Lucene search
GitHub Advisory DatabaseGHSA-5J5R-6MV9-M255HistoryMar 06, 2024 - 6:30 p.m.
Jenkins Build Monitor View Plugin vulnerable to stored Cross-site Scripting
2024-03-0618:30:38
CWE-79
GitHub Advisory Database
github.com
16
jenkins
build monitor view
xss
vulnerability
stored
cross-site scripting
security
software
Jenkins Build Monitor View Plugin 1.14-860.vd06ef2568b_3f and earlier does not escape Build Monitor View names, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure Build Monitor Views.
Affected configurations
Node
org.jenkins-ci.pluginsbuild-monitor-pluginRange≤1.14-860.vd06ef2568b
| Vendor | Product | Version | CPE |
|---|---|---|---|
| org.jenkins-ci.plugins | build-monitor-plugin | * | cpe:2.3:a:org.jenkins-ci.plugins:build-monitor-plugin:*:*:*:*:*:*:*:* |
Related
veracode
veracode
Cross-Site Scripting
2024-03-12 05:46:40
nvd
nvd
CVE-2024-28156
2024-03-06 17:15:10
prion
prion
Cross site scripting
2024-03-06 17:15:00
vulnrichment
vulnrichment
CVE-2024-28156
2024-03-06 17:01:58
osv
osv
Jenkins Build Monitor View Plugin vulnerable to stored Cross-site Scripting
2024-03-06 18:30:38
cvelist
cvelist
CVE-2024-28156
2024-03-06 17:01:58
cve
cve
CVE-2024-28156
2024-03-06 17:15:10
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-03-06)
2024-03-07 00:00:00