Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:49 p.m.20 views

CVE-2022-27197

Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure views...

5.4CVSS5.5AI score0.00812EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/03/16 12:0 a.m.6 views

org.jenkins-ci.plugins:project-build-times (>=1.0 <=1.2.1), org.jenkins-ci.plugins:project-stats-plugin (>=0.1 <=0.4) potentially affected by CVE-2022-27197 via org.jenkins-ci.plugins:dashboard-view (>=2.0 <=2.0.2)

org.jenkins-ci.plugins:dashboard-view MAVEN version =2.0, =1.0, =0.1, =0.4 Source cves: CVE-2022-27197 Source advisory: OSV:GHSA-6FG4-36V7-XV32...

5.4CVSS6AI score0.00812EPSS
Exploits0
Circl
Circl
added 2022/03/15 7:19 p.m.7 views

CVE-2022-27197

creationtimestamp| type| source ---|---|--- 2022-03-15 19:19:41+00:00| seen| https://t.me/cibsecurity/38947...

5.4CVSS5.4AI score0.00812EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/15 5:15 p.m.4 views

CVE-2022-27197

Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure views...

5.4CVSS5.8AI score0.00812EPSS
Exploits0References3
CVE
CVE
added 2022/03/15 4:45 p.m.126 views

CVE-2022-27197

CVE-2022-27197 affects Jenkins Dashboard View Plugin 2.18 and earlier. A stored XSS vulnerability arises because the Iframe Portlet’s Iframe source URL is not validated, enabling attackers who can configure views to inject script. Multiple external sources corroborate the issue and, in some cases...

5.4CVSS5.4AI score0.00812EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder