Lucene search
China National Vulnerability DatabaseCNVD-2022-08387HistoryJan 16, 2022 - 12:00 a.m.
Jenkins Matrix Project Plugin Cross-Site Scripting Vulnerability
2022-01-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
jenkins
matrix project plugin
cross-site scripting
vulnerability
data validation
javascript code
EPSS
0.001
Percentile
32.7%
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Matrix Project Plugin in version 1.19 and earlier has a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
Related
redhatcve
redhatcve
CVE-2022-20615
2022-01-24 18:05:35
cvelist
cvelist
CVE-2022-20615
2022-01-12 19:05:49
osv
osv
Stored XSS vulnerability in Matrix Project Plugin
2022-01-13 00:01:04
CVE-2022-20615
2022-01-12 20:15:08
github
github
Stored XSS vulnerability in Matrix Project Plugin
2022-01-13 00:01:04
checkpoint_advisories
checkpoint_advisories
Jenkins Matrix Project Plugin Cross-Site Scripting (CVE-2022-20615)
2022-11-03 00:00:00
cve
cve
CVE-2022-20615
2022-01-12 20:15:08
prion
prion
Cross site scripting
2022-01-12 20:15:00
nvd
nvd
CVE-2022-20615
2022-01-12 20:15:08
nessus
nessus
Jenkins Enterprise and Operations Center < 2.277.43.0.5 / 2.319.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2022-01-12)
2022-02-15 00:00:00
Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities
2022-01-21 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-01-12)
2022-01-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00