Description
Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL that points to Jenkins.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Activity Log SQL Injection (4.1.4)
WordPress Plugin WP Limit Login Attempts SQL Injection (2.0.0)
WordPress Plugin AceIDE Local File Inclusion (2.6.2)
MySQL CVE-2019-2743 Vulnerability (CVE-2019-2743)
Jboss EAP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2017-2670)