4 matches found
CVE-2022-28153
Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-28153
Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-28153
Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-28153
The CVE-2022-28153 entry refers to the Jenkins SiteMonitor Plugin (versions up to 0.6) where URLs shown in tooltips are not escaped, causing a stored XSS vulnerability. The impact is exploitable by attackers with Item/Configure permission; no remediation details are provided in the supplied docum...