Maven package
org.jenkins-ci.plugins/authorize-project
pkg:maven/org.jenkins-ci.plugins/authorize-project
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-52552 | — | < 1.8.0 | 1.8.0 | Nov 13, 2024 | Jenkins Authorize Project Plugin 1.7.2 and earlier evaluates a string containing the job name with JavaScript on the Authorization view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. |
- CVE-2024-52552Nov 13, 2024affected < 1.8.0fixed 1.8.0
Jenkins Authorize Project Plugin 1.7.2 and earlier evaluates a string containing the job name with JavaScript on the Authorization view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.