Vulnerabilities > Jenkins > Jenkins > 1.308
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-12-01 | CVE-2011-4344 | Cross-Site Scripting vulnerability in Jenkins Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins before 1.438, and 1.409 LTS before 1.409.3 LTS, when a stand-alone container is used, allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages. | 2.6 |