VYPR

GitHub

by Jenkins Project

CVEs (1)

  • CVE-2026-42523CriApr 29, 2026
    risk 0.59cvss 9.0epss 0.00

    Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature "GitHub hook trigger for GITScm polling", resulting in a stored cross-site scripting (XSS) vulnerability exploitable by non-anonymous…