Jenkins Scriptler Plugin 3.1 and earlier does not escape script content, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2021-06-16T13:40:12

Updated: 2024-08-03T18:23:27.481Z

Reserved: 2021-01-04T00:00:00

Link: CVE-2021-21668

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-06-16T14:15:08.610

Modified: 2024-11-21T05:48:47.927

Link: CVE-2021-21668

cve-icon Redhat

No data.