Description
Cross-site scripting (XSS) vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configuration.
Remediation
References
Related Vulnerabilities
WordPress Plugin Contact Form DB-Elementor Cross-Site Request Forgery (1.5)
WordPress Plugin Collapse-O-Matic Cross-Site Scripting (1.8.2)
WordPress Plugin GSEOR-WordPress SEO SQL Injection (1.3)
Jboss EAP Improper Handling of Exceptional Conditions Vulnerability (CVE-2018-8039)
Drupal Incorrect Authorization Vulnerability (CVE-2022-25274)