Input fields allowing special characters and scripts

XMLWordPrintable

    • Type: Bug
    • Resolution: Not A Defect
    • Priority: Major
    • Component/s: credentials-plugin
    • None
    • Environment:
      2.360.1

      There are various fields in Jenkins which accept special characters like <script>alert(1)</script> tags or java script content. These may result into the possible XSS attacks.

      Example in Credentials plug-in.

      Request to provide solution.

            Assignee:
            Unassigned
            Reporter:
            Ankur
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: