Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01f and earlier does not property sanitize or escape the timestamp value from history entries when rendering a history entry on the history view, resulting in a stored cross-site scripting (XSS) vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jenkins
Published: 2023-09-06T12:08:53.040Z
Updated: 2024-08-02T19:09:49.187Z
Reserved: 2023-09-05T16:39:57.391Z
Link: CVE-2023-41931
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-06T13:15:09.577
Modified: 2023-09-11T19:55:42.340
Link: CVE-2023-41931
Redhat
No data.