Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:53 a.m.13 views

CVE-2022-23108

Jenkins Badge Plugin 1.9 and earlier does not escape the description and does not check for allowed protocols when creating a badge, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS5.4AI score0.00839EPSS
Exploits0References1
Circl
Circl
added 2022/01/12 10:17 p.m.6 views

CVE-2022-23108

creationtimestamp| type| source ---|---|--- 2022-01-12 22:17:25+00:00| seen| https://t.me/cibsecurity/35360...

5.4CVSS5.5AI score0.00839EPSS
Exploits0References1
NVD
NVD
added 2022/01/12 8:15 p.m.11 views

CVE-2022-23108

Jenkins Badge Plugin 1.9 and earlier does not escape the description and does not check for allowed protocols when creating a badge, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS0.00839EPSS
Exploits0References2
CVE
CVE
added 2022/01/12 7:6 p.m.94 views

CVE-2022-23108

The CVE-2022-23108 issue affects Jenkins Badge Plugin (version 1.9 and earlier). The vulnerability arises because the plugin does not escape the description field and does not enforce allowed protocols when creating a badge, leading to a stored XSS vulnerability. Exploitation requires attacker wi...

5.4CVSS5.2AI score0.00839EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/01/12 7:6 p.m.20 views

CVE-2022-23108

Jenkins Badge Plugin 1.9 and earlier does not escape the description and does not check for allowed protocols when creating a badge, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

6.6AI score0.00839EPSS
Exploits0References2
Rows per page
Query Builder