CVE-2026-53441 – Jenkins Stored Cross-Site Scripting

CVE ID :CVE-2026-53441

Published : June 10, 2026, 2:16 p.m. | 23 minutes ago

Description :Jenkins 2.483 through 2.567 (both inclusive), LTS 2.492.1 through 2.555.2 (both inclusive) does not escape the user-provided description of a generic offline cause that could be set through the `POST config.xml` API, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Agent/Configure permission.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-53698 – Silverpeas: Privilege Escalation in Personal Space Component

CVE-2026-53694 – Potential local privileges escalation through argument injection in the nxchmod.sh script

CVE-2026-53693 – MISP BSimVis stored cross-site scripting in tag and cluster rendering paths via unescaped tag metadata and UI labels

CVE-2026-49760 – Stack Buffer Overflow in ei_s_print_term at Very Large Integer