Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins before 1.438, and 1.409 LTS before 1.409.3 LTS, when a stand-alone container is used, allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages.
Max CVSS
2.6
EPSS Score
0.28%
Published
2011-12-01
Updated
2016-06-13
1 vulnerabilities found