Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting

Exploit Description

Exploit Title: Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting
Date: 2019-11-06
Exploit Author: vesche (Austin Jackson)
Vendor Homepage: https://plugins.jenkins.io/build-metrics
Version: Jenkins build-metrics plugin 1.3 and below
Tested on: Debian 10 (Buster), Jenkins 2.203 (latest 2019-11-05), and build-metrics 1.3
CVE: CVE-2019-10475
Write-up: https://github.com/vesche/CVE-2019-10475

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
attack.py		attack.py
readme.md		readme.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

attack.py

attack.py

readme.md

readme.md

Repository files navigation

Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting

Exploit Description

About

Releases

Packages

Languages

msepehr/jenkins-build-metrics-xss

Folders and files

Latest commit

History

attack.py

attack.py

readme.md

readme.md

Repository files navigation

Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting

Exploit Description

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages