GHSA-f82v-pg74-6686
GitHub Security Advisory
Reflected XSS vulnerability in Jenkins AWSEB Deployment Plugin
✓ GitHub Reviewed
MODERATE
Has CVE
Advisory Details
AWSEB Deployment Plugin 0.3.19 and earlier does not escape various values printed as part of form validation output.
This results in a reflected cross-site scripting (XSS) vulnerability.
AWSEB Deployment Plugin 0.3.20 escapes the values printed as part of the affected form validation endpoints.
Affected Packages
Maven
br.com.ingenieux.jenkins.plugins:awseb-deployment-plugin
Affected versions:
0
(fixed in 0.3.20)
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: August 25, 2025 6:33 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.