Skip to main content

Shortcut Job

1 CVEs product

Monthly

CVE-2023-40346 Maven MEDIUM PATCH This Month

Jenkins Shortcut Job Plugin 0.4 and earlier does not escape the shortcut redirection URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Shortcut Job
NVD
CVSS 3.1
5.4
EPSS
0.4%
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Jenkins Shortcut Job Plugin 0.4 and earlier does not escape the shortcut redirection URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Shortcut Job
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy