Vulnerabilities > Jenkins > Markdown Formatter

DATE CVE VULNERABILITY TITLE RISK
2021-05-25 CVE-2021-21660 Cross-site Scripting vulnerability in Jenkins Markdown Formatter 0.1.0
Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter.
network
low complexity
jenkins CWE-79
5.4