GHSA-hc34-f55m-rh3m
Suggest an improvement- Source
- https://github.com/advisories/GHSA-hc34-f55m-rh3m
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-hc34-f55m-rh3m/GHSA-hc34-f55m-rh3m.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-hc34-f55m-rh3m
- Aliases
-
- CVE-2019-10376
- Published
- 2022-05-24T16:52:45Z
- Modified
- 2023-11-08T04:00:48.847081Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- Jenkins Wall Display Plugin Cross-site Scripting vulnerability
- Details
-
Wall Display Master Project Plugin does not properly escape the
customThemequery parameter, resulting in a reflected cross-site scripting vulnerability.As of publication of this advisory, there is no fix.
- Database specific
{ "nvd_published_at": "2019-08-07T15:15:00Z", "github_reviewed_at": "2023-03-03T23:09:55Z", "severity": "MODERATE", "github_reviewed": true, "cwe_ids": [ "CWE-79" ] }- References
Affected packages
Maven / org.jenkins-ci.plugins:jenkinswalldisplay
Package
- Name
- org.jenkins-ci.plugins:jenkinswalldisplay
- View open source insights on deps.dev
- Purl
- pkg:maven/org.jenkins-ci.plugins/jenkinswalldisplay
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedLast affected0.6.34
Affected versions
0.*
0.3
0.4
0.5.1
0.5.2
0.5.3
0.5.4
0.5.6
0.5.7
0.5.8
0.5.9
0.5.10
0.5.11
0.5.13
0.6.1
0.6.3
0.6.4
0.6.5
0.6.6
0.6.7
0.6.8
0.6.9
0.6.10
0.6.12
0.6.13
0.6.14
0.6.15
0.6.16
0.6.17
0.6.18
0.6.19
0.6.20
0.6.21
0.6.22
0.6.23
0.6.24
0.6.25
0.6.26
0.6.27
0.6.28
0.6.29
0.6.30
0.6.33
0.6.34