2 matches found
CVE-2022-46684
Jenkins Checkmarx Plugin 2022.3.3 and earlier does not escape values returned from the Checkmarx service API before inserting them into HTML reports, resulting in a stored cross-site scripting XSS vulnerability...
CVE-2022-46684
CVE-2022-46684 affects the Jenkins Checkmarx Plugin, versions 2022.3.3 and earlier. The vulnerability arises because the plugin does not escape values returned from the Checkmarx service API before inserting them into HTML reports, enabling stored cross-site scripting (XSS). Exploitation is tied ...