aboutsummaryrefslogtreecommitdiff
path: root/security/vuxml/vuln.xml
diff options
context:
space:
mode:
authorLi-Wen Hsu <lwhsu@FreeBSD.org>2012-03-07 18:44:29 +0000
committerLi-Wen Hsu <lwhsu@FreeBSD.org>2012-03-07 18:44:29 +0000
commitff7e1deed23f36db2d1dddd40d10e0c3057acce3 (patch)
tree1c860e786425c05bff6b6996e4151419cc8ec413 /security/vuxml/vuln.xml
parentaefd099eb8b6bf45a5d0c54f99ba7bfba1e21676 (diff)
Notes
Diffstat (limited to 'security/vuxml/vuln.xml')
-rw-r--r--security/vuxml/vuln.xml28
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 760ca207dc47..7dd3be44ca0a 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -52,6 +52,34 @@ Note: Please add new entries to the beginning of this file.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="9448a82f-6878-11e1-865f-00e0814cab4e">
+ <topic>jenkins -- XSS vulnerability</topic>
+ <affects>
+ <package>
+ <name>jenkins</name>
+ <range><lt>1.453</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Jenkins Security Advisory reports:</p>
+ <blockquote cite="https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2012-03-05">
+ <p>A XSS vulnerability was found in Jenkins core, which allows an
+ attacker to inject malicious HTMLs to pages served by Jenkins.
+ This allows an attacker to escalate his privileges by hijacking
+ sessions of other users. This vulnerability affects all versions</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2012-03-05</url>
+ </references>
+ <dates>
+ <discovery>2012-03-05</discovery>
+ <entry>2012-03-07</entry>
+ </dates>
+ </vuln>
+
<vuln vid="99aef698-66ed-11e1-8288-00262d5ed8ee">
<topic>chromium -- multiple vulnerabilities</topic>
<affects>
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-06 03:46:49 +0000