CVE-2021-21648

2021-05-1115:15:07

Google

osv.dev

AI Score

5.4

Confidence

High

EPSS

0.001

Percentile

33.8%

JSON

Jenkins Credentials Plugin 2.3.18 and earlier does not escape user-controlled information on a view it provides, resulting in a reflected cross-site scripting (XSS) vulnerability.

References

www.jenkins.io/security/advisory/2021-05-11/#SECURITY-2349