Description
The sidepanel widgets in the CLI command overview and help pages in Jenkins before 1.638 and LTS before 1.625.2 allow remote attackers to obtain sensitive information via a direct request to the pages.
Remediation
References
Related Vulnerabilities
Apache Tomcat URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41080)
WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Cross-Site Scripting (5.0.6)
Contao CVE-2018-20028 Vulnerability (CVE-2018-20028)
phpMyFAQ Other Vulnerability (CVE-2005-3049)
WordPress Plugin VO Store Locator-WP Store Locator Unspecified Vulnerability (3.2.14)