Vulnerabilities > Jenkins > Delivery Pipeline
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-01-26 | CVE-2017-1000404 | Cross-site Scripting vulnerability in Jenkins Delivery Pipeline The Jenkins Delivery Pipeline Plugin version 1.0.7 and earlier used the unescaped content of the query parameter 'fullscreen' in its JavaScript, resulting in a cross-site scripting vulnerability through specially crafted URLs. | 4.3 |