CVE-2023-25761

Vulnerability Description

Jenkins JUnit Plugin 1166.va_436e268e972 and earlier does not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control test case class names in the JUnit resources processed by the plugin.

Vulnerability Details

Published Date

February 15, 2023

Last Modified

March 19, 2025

Source

NVD

CVE-2023-25761

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment