Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:54 a.m.7 views

CVE-2024-28160

Jenkins iceScrum Plugin 1.1.6 and earlier does not sanitize iceScrum project URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...

8.8CVSS5.4AI score0.01129EPSS
Exploits0References1
Circl
Circl
added 2024/03/06 6:27 p.m.6 views

CVE-2024-28160

creationtimestamp| type| source ---|---|--- 2024-03-06 18:27:00+00:00| seen| https://t.me/ctinow/201631...

8.8CVSS8.1AI score0.01129EPSS
Exploits0References1
NVD
NVD
added 2024/03/06 5:15 p.m.14 views

CVE-2024-28160

Jenkins iceScrum Plugin 1.1.6 and earlier does not sanitize iceScrum project URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...

8.8CVSS5.5AI score0.01129EPSS
Exploits0References2
OSV
OSV
added 2024/03/06 5:15 p.m.6 views

CVE-2024-28160

Jenkins iceScrum Plugin 1.1.6 and earlier does not sanitize iceScrum project URLs on build views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs...

8.8CVSS5.3AI score
Exploits0References2
CVE
CVE
added 2024/03/06 5:2 p.m.86 views

CVE-2024-28160

CVE-2024-28160 affects the Jenkins iceScrum Plugin (versions 1.1.6 and earlier). The vulnerability arises because the plugin does not sanitize iceScrum project URLs on build views, leading to a stored cross-site scripting (XSS) vulnerability. This can be exploited by attackers who have the abilit...

8.8CVSS5.3AI score0.01129EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder