CVE-2026-42524 - Jenkins HTML Publisher Plugin Stored XSS Vulnerability
CVE ID :CVE-2026-42524 Published : April 29, 2026, 2:16 p.m. | 21 minutes ago Description :Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Ite
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] DFIR L3 Interviews
- [CYBER] Cyber proxy wars escalate as hackers shift to infrastructure targets
- [CYBER] cPanel, WHM emergency update fixes critical auth bypass bug
- [CYBER] Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error
- [CYBER] Hormuz Crisis Drives Insurance Spike
- [CYBER] Exploring training platforms alternative to Mimecast for better phishing awareness.