Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jenkins-ci.plugins/htmlpublisher@1.32.1
purl pkg:maven/org.jenkins-ci.plugins/htmlpublisher@1.32.1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-117s-ujg4-cyfk Jenkins HTML Publisher Plugin Path traversal vulnerability Jenkins HTML Publisher Plugin 1.32 and earlier archives invalid symbolic links in report directories on agents and recreates them on the controller, allowing attackers with Item/Configure permission to determine whether a path on the Jenkins controller file system exists, without being able to access it. CVE-2024-28151
GHSA-478x-m3mx-7j3f
VCID-6ubx-j66h-ykh5 Jenkins HTML Publisher Plugin Stored XSS vulnerability Jenkins HTML Publisher Plugin 1.32 and earlier does not escape job names, report names, and index page titles shown as part of the report frame, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. CVE-2024-28150
GHSA-xrrw-9j78-hpf3
VCID-s4j7-r6m7-tyey Jenkins HTML Publisher Plugin does not properly sanitize input Jenkins HTML Publisher Plugin 1.16 through 1.32 (both inclusive) does not properly sanitize input, allowing attackers with Item/Configure permission to implement cross-site scripting (XSS) attacks and to determine whether a path on the Jenkins controller file system exists. CVE-2024-28149
GHSA-8vcg-v7g4-3vr7

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T16:04:46.362318+00:00 GHSA Importer Fixing VCID-117s-ujg4-cyfk https://github.com/advisories/GHSA-478x-m3mx-7j3f 38.0.0
2026-04-01T16:04:46.316289+00:00 GHSA Importer Fixing VCID-s4j7-r6m7-tyey https://github.com/advisories/GHSA-8vcg-v7g4-3vr7 38.0.0
2026-04-01T16:04:46.266039+00:00 GHSA Importer Fixing VCID-6ubx-j66h-ykh5 https://github.com/advisories/GHSA-xrrw-9j78-hpf3 38.0.0
2026-04-01T12:52:37.294529+00:00 GitLab Importer Fixing VCID-6ubx-j66h-ykh5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/htmlpublisher/CVE-2024-28150.yml 38.0.0
2026-04-01T12:52:36.879698+00:00 GitLab Importer Fixing VCID-117s-ujg4-cyfk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/htmlpublisher/CVE-2024-28151.yml 38.0.0
2026-04-01T12:52:36.816488+00:00 GitLab Importer Fixing VCID-s4j7-r6m7-tyey https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/htmlpublisher/CVE-2024-28149.yml 38.0.0
2026-04-01T12:51:00.308695+00:00 GithubOSV Importer Fixing VCID-117s-ujg4-cyfk https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/03/GHSA-478x-m3mx-7j3f/GHSA-478x-m3mx-7j3f.json 38.0.0
2026-04-01T12:50:51.093574+00:00 GithubOSV Importer Fixing VCID-s4j7-r6m7-tyey https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/03/GHSA-8vcg-v7g4-3vr7/GHSA-8vcg-v7g4-3vr7.json 38.0.0
2026-04-01T12:50:49.664005+00:00 GithubOSV Importer Fixing VCID-6ubx-j66h-ykh5 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/03/GHSA-xrrw-9j78-hpf3/GHSA-xrrw-9j78-hpf3.json 38.0.0