Back to bug 2044499
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Michael Kaplan | 2022-01-24 17:27:48 UTC | Severity | medium | high |
| Priority | medium | high | ||
| Przemyslaw Roguski | 2022-01-25 11:00:21 UTC | Doc Text | A stored cross-site scripting (XSS) vulnerability was found in the Jenkins Matrix Project plugin. There is no escape HTML metacharacters in node, label names and label descriptions, what allows an attacker with Agent/Configure permission to perform XSS attack. | |
| Severity | high | medium | ||
| Priority | high | medium | ||
| Przemyslaw Roguski | 2022-01-25 11:02:37 UTC | Depends On | 2044929, 2044928, 2044926, 2044927 | |
| RaTasha Tillery-Smith | 2022-01-25 20:14:33 UTC | Doc Text | A stored cross-site scripting (XSS) vulnerability was found in the Jenkins Matrix Project plugin. There is no escape HTML metacharacters in node, label names and label descriptions, what allows an attacker with Agent/Configure permission to perform XSS attack. | A stored Cross-site scripting (XSS) vulnerability was found in the Jenkins Matrix Project plugin. There are no escape HTML metacharacters in node, label names, and label descriptions, which allows an attacker with Agent/Configure permissions to perform an XSS attack. |
| Przemyslaw Roguski | 2022-01-28 16:54:42 UTC | Depends On | 2044926 | |
| Przemyslaw Roguski | 2022-01-28 16:57:20 UTC | Depends On | 2047839 | |
| Red Hat Bugzilla | 2022-09-30 18:51:06 UTC | CC | pbhattac | |
| Red Hat Bugzilla | 2023-07-07 08:35:22 UTC | Assignee | security-response-team | nobody |
Back to bug 2044499