Lucene search

K

Jenkins Dashboard View Plugin Security Vulnerabilities

cve
cve

CVE-2023-40350

Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control responses from...

5.4CVSS

5.2AI Score

0.001EPSS

2023-08-16 03:15 PM
212
cve
cve

CVE-2022-34795

Jenkins Deployment Dashboard Plugin 1.0.10 and earlier does not escape environment names on its Deployment Dashboard view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure...

5.4CVSS

5.4AI Score

0.001EPSS

2022-06-30 06:15 PM
243
3
cve
cve

CVE-2022-27213

Jenkins Environment Dashboard Plugin 1.1.10 and earlier does not escape the Environment order and the Component order configuration values in its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure...

5.4CVSS

5.4AI Score

0.001EPSS

2022-03-15 05:15 PM
126
cve
cve

CVE-2022-27197

Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure...

5.4CVSS

5.4AI Score

0.001EPSS

2022-03-15 05:15 PM
83
cve
cve

CVE-2021-21649

Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure...

5.4CVSS

5.3AI Score

0.001EPSS

2021-05-11 03:15 PM
51
2
cve
cve

CVE-2019-10396

Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build...

5.4CVSS

5.2AI Score

0.001EPSS

2019-09-12 02:15 PM
58