5 matches found
CVE-2022-41240
Jenkins Walti Plugin 1.0.1 and earlier does not escape the information provided by the Walti API, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide malicious API responses from Walti...
CVE-2022-41240
creationtimestamp| type| source ---|---|--- 2022-09-21 20:41:28+00:00| seen| https://t.me/cibsecurity/50216...
CVE-2022-41240
Jenkins Walti Plugin 1.0.1 and earlier does not escape the information provided by the Walti API, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide malicious API responses from Walti...
CVE-2022-41240
CVE-2022-41240 affects Jenkins Walti Plugin 1.0.1 and earlier. The vulnerability arises because the plugin does not escape data returned by the Walti API, leading to a stored XSS vulnerability that an attacker can exploit by supplying malicious API responses. The available documents confirm the a...
CVE-2022-41240
Jenkins Walti Plugin 1.0.1 and earlier does not escape the information provided by the Walti API, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to provide malicious API responses from Walti...