CVE-2023-25761

Published: 2023-02-15T14:15Z

Last Modified: 2025-03-19T16:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Jenkins JUnit Plugin 1166.va_436e268e972 and earlier does not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control test case class names in the JUnit resources processed by the plugin. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt