Description
Cross-site scripting (XSS) vulnerability in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-1812.
Remediation
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8628)
WordPress Plugin Login with Cognito Cross-Site Scripting (1.4.3)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3586)
WordPress Plugin GB Gallery Slideshow SQL Injection (1.2)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-11201)