Jenkins iceScrum Plugin 1.1.6 and... CVE-2024-28160

- AV AC AU C I A
发布: 2024-03-06
修订: 2024-03-06

Jenkins iceScrum Plugin 1.1.6 and earlier does not sanitize iceScrum project URLs on build views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure jobs.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息