Lucene search
Redhat.comRH:CVE-2018-1999005HistoryJul 30, 2018 - 3:49 a.m.
CVE-2018-1999005
2018-07-3003:49:44
redhat.com
access.redhat.com
15
EPSS
0.001
Percentile
21.7%
A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user’s browser when that other user performs some UI actions.
Related
prion
prion
Cross site scripting
2018-07-23 19:29:00
osv
osv
CVE-2018-1999005
2018-07-23 19:29:00
Improper Neutralization of Input During Web Page Generation in Jenkins
2022-05-13 01:01:01
github
github
Improper Neutralization of Input During Web Page Generation in Jenkins
2022-05-13 01:01:01
cve
cve
CVE-2018-1999005
2018-07-23 19:29:00
cvelist
cvelist
CVE-2018-1999005
2018-07-23 19:00:00
nvd
nvd
CVE-2018-1999005
2018-07-23 19:29:00
nessus
nessus
Jenkins < 2.121.2 / 2.133 Multiple Vulnerabilities
2018-08-09 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2018-07-18 00:00:00
openvas
openvas
Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Linux
2018-07-24 00:00:00
Jenkins < 2.133 and < 2.121.2 LTS Multiple Vulnerabilities - Windows
2018-07-24 00:00:00
archlinux
archlinux
[ASA-201807-14] jenkins: multiple issues
2018-07-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00