GHSA-826f-32qm-vm3j
Suggest an improvement- Source
- https://github.com/advisories/GHSA-826f-32qm-vm3j
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-826f-32qm-vm3j/GHSA-826f-32qm-vm3j.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-826f-32qm-vm3j
- Aliases
-
- CVE-2013-2033
- Published
- 2022-05-14T01:52:20Z
- Modified
- 2024-12-04T05:41:48.843470Z
- Summary
- Jenkins vulnerable to Cross-site Scripting
- Details
-
Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML via unspecified vectors.
- Database specific
{ "nvd_published_at": "2014-04-10T20:29:00Z", "cwe_ids": [ "CWE-79" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-02-08T17:54:53Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2013-2033
- https://access.redhat.com/errata/RHEA-2013:1032
- https://access.redhat.com/security/cve/CVE-2013-2033
- https://bugzilla.redhat.com/show_bug.cgi?id=958957
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84004
- https://issues.jenkins-ci.org/browse/SECURITY-67
- https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
- http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
Affected packages
Maven / org.jenkins-ci.main:jenkins-core
Package
- Name
- org.jenkins-ci.main:jenkins-core
- View open source insights on deps.dev
- Purl
- pkg:maven/org.jenkins-ci.main/jenkins-core
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.509.1
Affected versions
1.*
1.396
1.397
1.398
1.399
1.400
1.401
1.403
1.404
1.405
1.406
1.407
1.408
1.409
1.409.1
1.409.2
1.409.3
1.410
1.411
1.412
1.413
1.414
1.415
1.416
1.417
1.418
1.419
1.420
1.421
1.422
1.423
1.424
1.424.1
1.424.2
1.424.3
1.424.4
1.424.5
1.424.6
1.425
1.426
1.427
1.428
1.429
1.430
1.431
1.432
1.433
1.434
1.435
1.436
1.437
1.438
1.439
1.440
1.441
1.442
1.443
1.444
1.445
1.446
1.447
1.447.1
1.447.2
1.448
1.449
1.450
1.451
1.452
1.453
1.454
1.455
1.456
1.457
1.458
1.459
1.460
1.461
1.462
1.463
1.464
1.465
1.466
1.466.1
1.466.2
1.467
1.468
1.469
1.470
1.471
1.472
1.473
1.474
1.475
1.476
1.477
1.478
1.479
1.480
1.480.1
1.480.2
1.480.3
1.481
1.482
1.483
1.484
1.485
1.486
1.487
1.488
1.489
1.490
1.491
1.492
1.493
1.494
1.495
1.496
1.497
1.498
1.499
1.500
1.501
1.502
1.503
1.504
1.505
1.506
1.507
1.508
1.509
Maven / org.jenkins-ci.main:jenkins-core
Package
- Name
- org.jenkins-ci.main:jenkins-core
- View open source insights on deps.dev
- Purl
- pkg:maven/org.jenkins-ci.main/jenkins-core