CVE-2021-21648

Jenkins Credentials Plugin 2.3.18 and earlier does not escape user-controlled information on a view it provides, resulting in a reflected cross-site scripting (XSS) vulnerability.

Link	Resource
https://www.jenkins.io/security/advisory/2021-05-11/#SECURITY-2349	Vendor Advisory

Configuration 1

cpe:2.3:a:jenkins:credentials:*:*:*:*:*:jenkins:*:*

---

Published : 2021-05-11 03:15

Updated : 2021-05-14 09:39

---

NVD link : CVE-2021-21648

Mitre link : CVE-2021-21648

No products.

CWE-79