Lucene search
GoogleOSV:CVE-2022-20615HistoryJan 12, 2022 - 8:15 p.m.
CVE-2022-20615
2022-01-1220:15:08
Google
osv.dev
7
jenkins
matrix project
xss
EPSS
0.001
Percentile
32.7%
Jenkins Matrix Project Plugin 1.19 and earlier does not escape HTML metacharacters in node and label names, and label descriptions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Agent/Configure permission.
Related
redhatcve
redhatcve
CVE-2022-20615
2022-01-24 18:05:35
cvelist
cvelist
CVE-2022-20615
2022-01-12 19:05:49
cnvd
cnvd
Jenkins Matrix Project Plugin Cross-Site Scripting Vulnerability
2022-01-16 00:00:00
osv
osv
Stored XSS vulnerability in Matrix Project Plugin
2022-01-13 00:01:04
github
github
Stored XSS vulnerability in Matrix Project Plugin
2022-01-13 00:01:04
checkpoint_advisories
checkpoint_advisories
Jenkins Matrix Project Plugin Cross-Site Scripting (CVE-2022-20615)
2022-11-03 00:00:00
cve
cve
CVE-2022-20615
2022-01-12 20:15:08
prion
prion
Cross site scripting
2022-01-12 20:15:00
nvd
nvd
CVE-2022-20615
2022-01-12 20:15:08
nessus
nessus
Jenkins Enterprise and Operations Center < 2.277.43.0.5 / 2.319.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2022-01-12)
2022-02-15 00:00:00
Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities
2022-01-21 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-01-12)
2022-01-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00