Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2022/06/23 5:15 p.m.2 views

CVE-2022-34194

Jenkins Readonly Parameter Plugin 1.0.0 and earlier does not escape the name and description of Readonly String and Readonly Text parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS6.2AI score0.00606EPSS
Exploits0References2
OSV
OSV
added 2022/06/23 5:15 p.m.2 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS6.2AI score0.00606EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/05/17 12:0 a.m.4 views

PT-2022-20417 · Jenkins · Jenkins +1

Name of the Vulnerable Software and Affected Versions: Jenkins Autocomplete Parameter Plugin versions 1.1 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability due to the failure to escape the name of Dropdown Autocomplete and Auto Complete String parameter...

5.4CVSS5.8AI score0.00715EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/05/17 12:0 a.m.7 views

Jenkins Autocomplete Parameter Plugin 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. The vulnerability stems from the program not properly escaping the names of th...

5.4CVSS5.4AI score0.00715EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/04/12 8:15 p.m.3 views

CVE-2022-29042

Jenkins Job Generator Plugin 1.22 and earlier does not escape the name and description of Generator Parameter and Generator Choice parameters on Job Generator jobs' Build With Parameters views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configu...

5.4CVSS6.1AI score0.00798EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/03/15 12:0 a.m.3 views

Jenkins List Git Branches Parameter 插件跨站脚本漏洞

Jenkins and Jenkins Plugin are both products of Jenkins, which is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building and deploying projects, and the Jenkins List Git Branches Parameter Plugin 0.0.9 and earlier is vulnerable to a cross-site...

5.4CVSS5.3AI score0.00792EPSS
Exploits0References6
OSV
OSV
added 2022/02/15 5:15 p.m.2 views

CVE-2022-25189

Jenkins Custom Checkbox Parameter Plugin 1.1 and earlier does not escape parameter names of custom checkbox parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS5.7AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/02/15 12:0 a.m.5 views

PT-2022-17129 · Jenkins · Jenkins Custom Checkbox Parameter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Custom Checkbox Parameter Plugin versions 1.1 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This is due to the plugin not escaping parameter names of custom checkbox parameters. Attacke...

8CVSS5.1AI score0.00598EPSS
Exploits0References7
CNNVD
CNNVD
added 2021/06/16 12:0 a.m.4 views

Jenkins Scriptler Plugin 跨站脚本漏洞

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project. A security vulnerability exists in the Jenkins Scriptler Plugin that stems from the fact that Jenkins Scriptler Plugin...

5.4CVSS5.8AI score0.75742EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/02/24 12:0 a.m.4 views

PT-2021-14665 · Jenkins · Jenkins Artifact Repository Parameter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Artifact Repository Parameter Plugin versions 1.0.0 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability because parameter names and descriptions are not escaped. This vulnerability is...

5.4CVSS5.1AI score0.09387EPSS
Exploits0References10
Rows per page
Query Builder