Reflected Cross-Site Scripting Vulnerability in Jenkins Embeddable Build Status Plugin 2.0.1 and Earlier

Reflected Cross-Site Scripting Vulnerability in Jenkins Embeddable Build Status Plugin 2.0.1 and Earlier

CVE-2019-10346 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A reflected cross site scripting vulnerability in Jenkins Embeddable Build Status Plugin 2.0.1 and earlier allowed attackers inject arbitrary HTML and JavaScript into the response of this plugin.

Learn more about our Web Application Penetration Testing UK.