Beagle

Jenkins build-metrics plugin 1.3 - label Cross-Site Scripting

By
Anandhu Krishnan
Published on
10 Jan 2022
Vulnerability

Description

Jenkins build-metrics has a reflected cross-site scripting vulnerability. Plugin allows attackers to inject arbitrary HTML and JavaScript into the plugin’s web pages.

Recommendation

  • Update Jenkins build-metrics plugin 1.3 to the latest version
Written by
Anandhu Krishnan
Anandhu Krishnan
Lead Engineer
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
Start free trial