CVE-2017-17383

CVE-2017-17383

Jenkins through 2.93 allows remote authenticated administrators to conduct XSS attacks via a crafted tool name in a job configuration form, as demonstrated by the JDK tool in Jenkins core and the Ant tool in the Ant plugin, aka SECURITY-624.

Source: CVE-2017-17383

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다