CVE-2024-28793 | Team Concert Git Plugin up to 2.0.4 on Jenkins Rational Team Concert Server URI cross site scripting

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Team Concert Git Plugin up to 2.0.4 on Jenkins. Affected by this issue is some unknown functionality of the component Rational Team Concert Server URI. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-28793. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28793 | Team Concert Git Plugin up to 2.0.4 on Jenkins Rational Team Concert Server URI cross site scripting

Post correlati

CVE-2024-6558 | HMS Industrial Networks Anybus-CompactCom 30 input cross site scripting (icsa-24-193-20)

CVE-2023-42858 | Apple macOS prior 12.7/13.6/14.1 access control

CVE-2024-40836 | Apple iOS/iPadOS Shortcut access control

CVE-2023-52046 | Webmin up to 2.105 Execute cron job as cross site scripting