7 matches found
EUVD-2022-5382
Malicious code in bioql PyPI...
EUVD-2022-1961
Malicious code in bioql PyPI...
EUVD-2022-3119
Malicious code in bioql PyPI...
GHSA-2C84-35RV-6Q3F Stored XSS vulnerability in ClearCase Release Plugin
Jenkins ClearCase Release Plugin 0.3 and earlier does not escape the composite baseline in badge tooltip, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Job/Configure permission...
Stored XSS vulnerability in ClearCase Release Plugin
Jenkins ClearCase Release Plugin 0.3 and earlier does not escape the composite baseline in badge tooltip, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Job/Configure permission...
CVE-2020-2292
Jenkins Release Plugin 2.10.2 and earlier does not escape the release version in badge tooltip, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Release/Release permission...
jenkins: Stored XSS vulnerability in 'keep forever' badge icons
A flaw was found in jenkins in versions prior to 2.244 and versions prior to LTS 2.235.1. Job names in the 'Keep this build forever' badge tooltip are not properly escaped which results in a stored cross-site scripting XSS vulnerability exploitable by users able to configure job names. The highes...