Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-70386

Input fields allowing special characters and scripts

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not A Defect
    • Icon: Major Major
    • credentials-plugin
    • None
    • 2.360.1

      There are various fields in Jenkins which accept special characters like <script>alert(1)</script> tags or java script content. These may result into the possible XSS attacks.

      Example in Credentials plug-in.

      Request to provide solution.

            Unassigned Unassigned
            erankur Ankur
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: