Description CVE-2014-3680 jenkins: password exposure in DOM (SECURITY-138) Remediation References CVE-2014-3680 Related Vulnerabilities WordPress Plugin Lazyest Backup 'xml_or_all' Parameter Cross-Site Scripting (0.2.1) WordPress Plugin Podcast Subscribe Buttons Cross-Site Scripting (1.4.1) Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-7675) WordPress Plugin WP Fastest Cache SQL Injection (0.8.4.8) WordPress 'edit.php' Cross-Site Scripting Vulnerability (1.5) Severity Medium Classification CVE-2014-3680 CWE-200 Tags Missing Update Known Vulnerabilities