CVE-2019-16562

Jenkins buildgraph-view Plugin 1.8 and earlier does not escape the description of builds shown in its view, resulting in a stored XSS vulnerability exploitable by users able to change build descriptions. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt