FreeBSD : jenkins -- XSS vulnerability (9448a82f-6878-11e1-865f-00e0814cab4e)

High Nessus Plugin ID 58283


The remote FreeBSD host is missing a security-related update.


Jenkins Security Advisory reports :

An XSS vulnerability was found in Jenkins core, which allows an attacker to inject malicious HTMLs to pages served by Jenkins. This allows an attacker to escalate his privileges by hijacking sessions of other users. This vulnerability affects all versions.


Update the affected package.

See Also

Plugin Details

Severity: High

ID: 58283

File Name: freebsd_pkg_9448a82f687811e1865f00e0814cab4e.nasl

Version: $Revision: 1.3 $

Type: local

Published: 2012/03/08

Modified: 2013/06/22

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:jenkins, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2012/03/07

Vulnerability Publication Date: 2012/03/05