Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2022/10/19 7:0 p.m.26 views

GHSA-HVCR-927W-QCVQ Stored XSS vulnerability in Jenkins Contrast Continuous Application Security Plugin

Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when generating a report. This results in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control or modify Contrast service API responses...

7.5CVSS5.3AI score0.11715EPSS
Exploits0References5
CVE
CVEadded 2022/10/19 12:0 a.m.68 views

CVE-2022-43420

CVE-2022-43420 : Jenkins Contrast Continuous Application Security Plugin (versions 3.9 and earlier) contains a stored XSS vulnerability caused by not escaping data returned from the Contrast service when generating a report. Exploitation requires an attacker who can control or modify the Contrast...

5.4CVSS5.2AI score0.11715EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/10/19 12:0 a.m.6 views

CVE-2022-43420

Jenkins Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when generating a report, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control or modify Contrast service API responses...

5.2AI score0.11715EPSS
Exploits0References2
Rows per page
Query Builder