Lucene search
GoogleOSV:GHSA-35H9-H439-VVMRHistoryMar 16, 2022 - 12:00 a.m.
Stored Cross-site Scripting vulnerability in Jenkins Environment Dashboard Plugin
2022-03-1600:00:42
Google
osv.dev
9
0.001 Low
EPSS
Percentile
22.2%
Jenkins Environment Dashboard Plugin 1.1.10 and earlier does not escape the Environment order and the Component order configuration values in its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
| CPE | Name | Operator | Version |
|---|---|---|---|
| io.jenkins.plugins:environment-dashboard | eq | 1.1.10 |
Related
cvelist
cvelist
CVE-2022-27213
2022-03-15 16:46:04
cnvd
cnvd
Jenkins Environment Dashboard Plugin Cross-Site Scripting Vulnerability
2022-03-17 00:00:00
cve
cve
CVE-2022-27213
2022-03-15 17:15:12
prion
prion
Cross site scripting
2022-03-15 17:15:00
github
github
nvd
nvd
CVE-2022-27213
2022-03-15 17:15:12
