{"vulnerability": "CVE-2026-42524", "sightings": [{"uuid": "dcf3229f-482c-41aa-9db1-226dfd680da6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml574cgbfw2r", "content": "\ud83d\udccc CVE-2026-42524 - Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting ... https://www.cyberhub.blog/cves/CVE-2026-42524", "creation_timestamp": "2026-05-05T22:07:06.646586Z"}, {"uuid": "a70687f5-9ce6-4f01-89e9-df73aa543211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmssaozi2z", "content": "\ud83d\udfe0 CVE-2026-42524 - High (8)\n\nJenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrap...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42524/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:43.891399Z"}, {"uuid": "a350695d-ad3f-4b3d-acec-cc7a0cc5b0a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mkncttifnr2c", "content": "CVE-2026-42524 - Jenkins HTML Publisher Plugin Stored XSS Vulnerability\nCVE ID : CVE-2026-42524\n \n Published : April 29, 2026, 1:31 p.m. | 46\u00a0minutes ago\n \n Description : Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file,...", "creation_timestamp": "2026-04-29T14:31:21.708551Z"}]}