CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/22 10:32 p.m.•4 views

CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS5.4AI score0.00217EPSS

Exploits0References1

Github Security Blog•added 2022/02/16 12:1 a.m.•24 views

Stored Cross-site Scripting vulnerability in Jenkins Team Views Plugin

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS2.6AI score0.00217EPSS

Exploits0References3Affected Software1

OSV•added 2022/02/16 12:1 a.m.•19 views

GHSA-MV5C-724F-3FQ7 Stored Cross-site Scripting vulnerability in Jenkins Team Views Plugin

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS5.4AI score0.00217EPSS

Exploits0References3

NVD•added 2022/02/15 5:15 p.m.•12 views

CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS0.00217EPSS

Exploits0References1

OSV•added 2022/02/15 5:15 p.m.•28 views

CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS5.7AI score

Exploits0References1

ATTACKERKB•added 2022/02/15 5:15 p.m.•4 views

CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

5.4CVSS5.9AI score0.00217EPSS

Exploits0References2

Prion•added 2022/02/15 5:15 p.m.•15 views

Cross site scripting

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

3.5CVSS5.2AI score0.00217EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/02/15 4:11 p.m.•15 views

CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Overall/Read permission...

6AI score0.00217EPSS

Exploits0References1

CVE•added 2022/02/15 4:11 p.m.•126 views

CVE-2022-25203

CVE-2022-25203 affects Jenkins Team Views Plugin 0.9.0 and earlier: it does not escape team names, enabling stored XSS when an attacker with Overall/Read permission views or interacts with the affected feature. Multiple advisories (NVD, Red Hat CNS/OSV, Nessus/NASL entries, GitHub advisories) cor...

5.4CVSS5.3AI score0.00217EPSS

Exploits0References1Affected Software1

CNNVD•added 2022/02/15 12:0 a.m.•2 views

Jenkins 插件跨站脚本漏洞

Jenkins plug-ins are plug-ins that provide appropriate functionality for Jenkins. JenkinsTeam Views Plugin cross-site scripting vulnerability. This vulnerability allows an attacker to execute JavaScript code on the client side...

5.4CVSS5.5AI score0.00217EPSS

Exploits0References5

Positive Technologies•added 2022/02/15 12:0 a.m.•3 views

PT-2022-17142 · Jenkins · Jenkins Team Views Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Team Views Plugin version 0.9.0 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because team names are not properly escaped, allowing attackers with Overall/Read permission to...

5.4CVSS5AI score0.00217EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by