CVE-2017-1000404

Published: 2018-01-26T02:29Z

Last Modified: 2024-11-21T03:04Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The Jenkins Delivery Pipeline Plugin version 1.0.7 and earlier used the unescaped content of the query parameter 'fullscreen' in its JavaScript, resulting in a cross-site scripting vulnerability through specially crafted URLs. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt