CVE-2019-10396

Summary

Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build descriptions.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Dashboard View Plugin2.11 and earlieraffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References