Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2022/05/23 12:0 a.m.117 views

Jenkins plugins Multiple Vulnerabilities (2022-04-12)

According to its their self-reported version number, the version of Jenkins plugins running on the remote web server are Jenkins CVS Plugin prior to 2.19.1, Credentials Plugin prior to 1112., Extended Choice Parameter Plugin 346. or earlier, Gerrit Trigger Plugin prior to 2.35.3, Git Parameter...

8.8CVSS5.8AI score0.7855EPSS
Exploits0References18
NVD
NVD
added 2022/04/12 8:15 p.m.23 views

CVE-2022-29040

Jenkins Git Parameter Plugin 0.9.15 and earlier does not escape the name and description of Git parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS0.00802EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/12 8:15 p.m.4 views

CVE-2022-29040

Jenkins Git Parameter Plugin 0.9.15 and earlier does not escape the name and description of Git parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS6AI score0.00802EPSS
Exploits0References2
CVE
CVE
added 2022/04/12 7:50 p.m.118 views

CVE-2022-29040

CVE-2022-29040 affects the Jenkins Git Parameter Plugin (version 0.9.15 and earlier). The issue is a stored XSS vulnerability caused by the plugin not escaping the name and description of Git parameters on parameter display views, enabling exploitation by attackers with Item/Configure permission....

5.4CVSS5.4AI score0.00802EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder