CVE-2021-21611 – Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape display names and IDs o …

13 January 2021

Vuln ID: CVE-2021-21611

Published: 2021-01-13 16:15:14Z

Description: Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape display names and IDs of item types shown on the New Item page, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to specify display names or IDs of item types.

Source: NVD.NIST.GOV

Date:

13 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Hackers make millions of attempts to exploit WordPress plugin vulnerability26 April 2024
Cybersecurity provider Darktrace to be acquired by Thoma Bravo for $5.3B26 April 2024
BeyondTrust Report: Microsoft Security Vulnerabilities Decreased by 5% in 202326 April 2024
Kaiser Permanente shared 13.4M people’s data with Microsoft Bing, Google, others26 April 2024
Discover How DeepL Write Pro Enhances Accuracy and Security26 April 2024