GHSA-63cj-3r94-234v, CVE-2017-1000103
maven/org.jvnet.hudson.plugins/dry
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view.
All versions up to 2.48
Upgrade to version 2.49 or above.
2024-01-31
source |