Reflected cross-site scripting (XSS) In org.jenkins-ci.main:jenkins-core
Description
Jenkins allows Cross-Site Scripting (XSS) Cross-site scripting (XSS) vulnerability in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-1812.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 maven | 1.606, 1.596.2 |
Aliases
1. 2. 3. 4. 5.
References
1. 2. 3. 4.