CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

NVD•added 2022/06/30 6:15 p.m.•17 views

CVE-2022-34784

Jenkins build-metrics Plugin 1.3 does not escape the build description on one of its views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Build/Update permission...

5.4CVSS0.08631EPSS

Exploits0References1

CNNVD•added 2022/06/30 12:0 a.m.•4 views

Jenkins Plugin build-metrics 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plug-ins to support building, deploying, and automating any project. Jenkins build-metrics Plugin version 1.3 contains a cross-site scripting...

5.4CVSS5.3AI score0.08631EPSS

Exploits0References5

Positive Technologies•added 2019/12/17 12:0 a.m.•3 views

PT-2019-14717 · Jenkins · Jenkins Buildgraph-View Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins buildgraph-view Plugin versions 1.8 and earlier Description: The issue results in a stored cross-site scripting vulnerability. It occurs because the plugin does not escape the description of builds shown in its view. This makes it...

5.4CVSS5.1AI score0.00195EPSS

Exploits0References5

RedHat Linux•added 2013/07/09 6:57 p.m.•1 views

Jenkins: Build Description XSS

Cross-site scripting XSS vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.9AI score0.00178EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by