Jenkins build-metrics Plugin Cross-Site Scripting (CVE-2019-10475)

A cross-site scripting vulnerability exists in Jenkins build-metrics Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the effected system.

You can read the full article here.