admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Be more specific about affected control

Browse Source
This commit is contained in:
Daniel Beck 2019-04-10 18:03:41 +02:00
parent 0dacc97f6a
commit 6ef0d8fea5
No known key found for this signature in database
GPG Key ID: 86E30187A0C5D16A
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
2019/1003xxx/CVE-2019-1003050.json
View File

@ -33,7 +33,7 @@
"description_data": [
{
"lang": "eng",
"value": "A form control for the Jenkins UI did not properly escape job URLs in Jenkins 2.171 and earlier and Jenkins LTS 2.164.1 and earlier, resulting in a cross-site scripting (XSS) vulnerability exploitable by users with the ability to control job names."
"value": "The f:validateButton form control for the Jenkins UI did not properly escape job URLs in Jenkins 2.171 and earlier and Jenkins LTS 2.164.1 and earlier, resulting in a cross-site scripting (XSS) vulnerability exploitable by users with the ability to control job names."
}
]
},