Skip to main content

Template Workflows

1 CVEs product

Monthly

CVE-2023-35146 Maven MEDIUM This Month

Jenkins Template Workflows Plugin 41.v32d86a_313b_4a and earlier does not escape names of jobs used as buildings blocks for Template Workflow Job, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Template Workflows
NVD
CVSS 3.1
5.4
EPSS
0.8%
EPSS 1% CVSS 5.4
MEDIUM This Month

Jenkins Template Workflows Plugin 41.v32d86a_313b_4a and earlier does not escape names of jobs used as buildings blocks for Template Workflow Job, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Template Workflows
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy