Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jenkins Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when generating a report, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control or modify Contrast service API responses.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jenkins Contrast Continuous Application Security Plugin 跨站脚本漏洞
Vulnerability Description
Jenkins和Jenkins Plugin都是Jenkins开源的产品。Jenkins是一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建,部署和自动化任何项目。Jenkins Plugin是一个应用软件。 Jenkins Contrast Continuous Application Security Plugin 3.9及之前版本存在跨站脚本漏洞,该漏洞源于在生成报告时没有转义从Contrast服务返回的数据,这导致存储型跨站脚本(XSS),漏洞可被能够控制或修改对比度服务A
CVSS Information
N/A
Vulnerability Type
N/A