Cross-Site Scripting Vulnerability in Jenkins Warnings NG Plugin
CVE-2019-10325
5.4MEDIUM
What is CVE-2019-10325?
A cross-site scripting flaw in the Jenkins Warnings NG Plugin allows attackers with Job/Configure permissions to inject malicious JavaScript into the build overview pages. This could enable unauthorized actions or data exposure, posing a significant risk to users interacting with affected pages.
Affected Version(s)
Jenkins Warnings NG Plugin 5.0.0 and earlier