Lucene search
China National Vulnerability DatabaseCNVD-2022-58427HistoryJul 04, 2022 - 12:00 a.m.
Jenkins Plugin GitLab Cross-Site Scripting Vulnerability
2022-07-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
22.3%
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.A cross-site scripting vulnerability exists in Jenkins Plugin GitLab, which stems from multiple fields that do not escape the description inserted into the webhook trigger build. An attacker with project (configuration) privileges can exploit this vulnerability to cause a cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins gitlab plugin | le | 1.5.34 |
Related
nvd
nvd
CVE-2022-34777
2022-06-30 18:15:09
checkpoint_advisories
checkpoint_advisories
Jenkins GitLab Plugin Cross-Site Scripting (CVE-2022-34777)
2022-10-31 00:00:00
prion
prion
Cross site scripting
2022-06-30 18:15:00
cvelist
cvelist
CVE-2022-34777
2022-06-30 17:45:54
osv
osv
Cross-site Scripting in Jenkins GitLab Plugin
2022-07-01 00:01:07
CVE-2022-34777
2022-06-30 18:15:09
github
github
Cross-site Scripting in Jenkins GitLab Plugin
2022-07-01 00:01:07
cve
cve
CVE-2022-34777
2022-06-30 18:15:09
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-06-30)
2023-08-04 00:00:00