vulnerability

Red Hat OpenShift: CVE-2019-1003042: jenkins-plugin-lockable-resources: XSS vulnerability in Lockable Resources Plugin (SECURITY-1361)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:S/C:N/I:P/A:N)	Mar 28, 2019	Jun 12, 2019	Aug 11, 2025

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:P/A:N)

Published

Mar 28, 2019

Added

Jun 12, 2019

Modified

Aug 11, 2025

Description

A cross site scripting vulnerability in Jenkins Lockable Resources Plugin 2.4 and earlier allows attackers able to control resource names to inject arbitrary JavaScript in web pages rendered by the plugin.

Solution

linuxrpm-upgrade-jenkins-2-plugins

References

CVE-2019-100304
https://attackerkb.com/topics/CVE-2019-100304
CWE-79
REDHAT-RHSA-2019:1423

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today