Lucene search
PRIOn knowledge basePRION:CVE-2023-25761HistoryFeb 15, 2023 - 2:15 p.m.
Cross site scripting
2023-02-1514:15:00
PRIOn knowledge base
www.prio-n.com
5
cross-site scripting
jenkins
junit plugin
vulnerability
exploitable
attackers
test case class names
Jenkins JUnit Plugin 1166.va_436e268e972 and earlier does not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control test case class names in the JUnit resources processed by the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| junit | eq | <= 1166.va-436e268e972 |
Related
github
github
Cross-site Scripting in Jenkins JUnit Plugin
2023-02-15 15:30:41
osv
osv
Cross-site Scripting in Jenkins JUnit Plugin
2023-02-15 15:30:41
CVE-2023-25761
2023-02-15 14:15:13
alpinelinux
alpinelinux
CVE-2023-25761
2023-02-15 14:15:13
redhatcve
redhatcve
CVE-2023-25761
2023-02-15 13:59:58
cve
cve
CVE-2023-25761
2023-02-15 14:15:13
cvelist
cvelist
CVE-2023-25761
2023-02-15 00:00:00
nvd
nvd
CVE-2023-25761
2023-02-15 14:15:13
cbl_mariner
cbl_mariner
CVE-2023-25761 affecting package junit 4.13-5
2024-06-29 09:08:33
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.10.58 (RHSA-2023:1866)
2024-04-28 00:00:00
RHCOS 4 : OpenShift Container Platform 4.10.58 (RHSA-2023:1866)
2024-01-24 00:00:00
RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2023:3195)
2024-04-28 00:00:00
redhat
redhat
(RHSA-2023:3195) Important: jenkins and jenkins-2-plugins security update
2023-05-17 16:15:17