Maven package
se.diabol.jenkins.pipeline/delivery-pipeline-plugin
pkg:maven/se.diabol.jenkins.pipeline/delivery-pipeline-plugin
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-1000404 | — | < 1.0.8 | 1.0.8 | Jan 26, 2018 | The Jenkins Delivery Pipeline Plugin version 1.0.7 and earlier used the unescaped content of the query parameter 'fullscreen' in its JavaScript, resulting in a cross-site scripting vulnerability through specially crafted URLs. |
- CVE-2017-1000404Jan 26, 2018affected < 1.0.8fixed 1.0.8
The Jenkins Delivery Pipeline Plugin version 1.0.7 and earlier used the unescaped content of the query parameter 'fullscreen' in its JavaScript, resulting in a cross-site scripting vulnerability through specially crafted URLs.