Description
Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2012-0507 Vulnerability (CVE-2012-0507)
Claroline Other Vulnerability (CVE-2006-2868)
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4613)
WordPress Plugin Event List Cross-Site Scripting (0.7.9)
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-46158)