Jenkins.Metadata.Description.XSS
Description
This indicates an attack attempt against a Cross-Site Scripting vulnerability in Jenkins Metadata Plugin.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker may be able exploit this to execute arbitrary script code within the context of the application.
Affected Products
Metadata Plugin 1.1.0b
Impact
System Compromise: Remote attackers can execute arbitrary script code in the context of the affected application.
Recommended Actions
Apply the latest update from the vendor.
https://jenkins.io/security/advisory/2018-09-25/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2018-09-26 | 13.458 | Name:FG-VD-18-122_Jenkins. 0day:Jenkins. Metadata. Description. XSS |