CVE-2014-3678 Information

Description

Cross-site scripting (XSS) vulnerability in the Monitoring plugin before 1.53.0 for Jenkins allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://secunia.com/advisories/59122 https://wiki.jenkins-ci.org/display/JENKINS/Monitoring https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01