Description
Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2024-49062 Vulnerability (CVE-2024-49062)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0129)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-1856)
WordPress Plugin WP Dynamic Keywords Injector Cross-Site Request Forgery (2.3.15)
RubyGems Improper Input Validation Vulnerability (CVE-2017-0901)