CVE-2023-30520

Posted on 2023년 4월 13일2023년 4월 13일 by admin

CVE-2023-30520

Jenkins Quay.io trigger Plugin 0.1 and earlier does not limit URL schemes for repository homepage URLs submitted via Quay.io trigger webhooks, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to submit crafted Quay.io trigger webhook payloads.

Source: CVE-2023-30520

답글 남기기 응답 취소