5.4

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2021-21660

GHSA ID

GHSA-xqpp-26pp-2365

EPSS Score

0.47731%

CWE

CWE-79

Published

5/24/2022

Updated

12/22/2023

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-21660

CVE-2021-21660: XSS vulnerability in Jenkins Markdown Formatter Plugin

Jenkins Markdown Formatter Plugin 0.1.0 and earlier uses a Markdown library to parse Markdown that does not escape crafted link target URLs.

This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with the ability to edit any description rendered using the configured markup formatter.

Jenkins Markdown Formatter Plugin 0.2.0 uses a different Markdown library that is not affected by this problem.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2021-21660

CVE-2021-21660:

5.4

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2021-21660

GHSA ID

GHSA-xqpp-26pp-2365

EPSS Score

0.47731%

CWE

CWE-79

Published

5/24/2022

Updated

12/22/2023

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
io.jenkins.plugins:markdown-formatter	maven	<= 0.1.0	0.2.0

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from improper URL sanitization in markdown link rendering. The pre-patch code used Flexmark library's HtmlRenderer with escapeHtml(true) but lacked URL sanitization features. The critical fix in the commit switched to CommonMark's HtmlRenderer with both escapeHtml(true) and sanitizeUrls(true), explicitly addressing URL schemes. The test case changes demonstrate that previously dangerous links like click me were not properly neutralized, while post-patch they get sanitized with 'nofollow' and empty hrefs. The translate method is directly responsible for parsing and rendering user-controlled markdown content, making it the vulnerable entry point.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

5.4

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2021-21660: XSS vulnerability in Jenkins Markdown Formatter Plugin

CVE-2021-21660:

5.4

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Technical Details

5.4

5.4

Basic Information

Basic Information

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2021-21660: XSS vulnerability in Jenkins Markdown Formatter Plugin

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI