GHSA-4262-wr7p-gpcj, CVE-2019-6804
maven/org.rundeck/rundeck
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
An XSS issue was discovered on the Job Edit page in Rundeck Community Edition before 3.0.13, related to assets/javascripts/workflowStepEditorKO.js and views/execution/_wfitemEdit.gsp.
All versions before 3.0.13
Upgrade to version 3.0.13 or above.
2022-11-23
source |