CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

OSV•added 2020/02/12 3:15 p.m.•19 views

CVE-2020-2113

Jenkins Git Parameter Plugin 0.9.11 and earlier does not escape the default value shown on the UI, resulting in a stored cross-site scripting vulnerability exploitable by users with Job/Configure permission...

5.4CVSS5.9AI score

Exploits0References2

NVD•added 2020/02/12 3:15 p.m.•15 views

CVE-2020-2113

5.4CVSS5.3AI score0.00102EPSS

Exploits0References2

NVD•added 2020/02/12 3:15 p.m.•11 views

CVE-2020-2112

Jenkins Git Parameter Plugin 0.9.11 and earlier does not escape the parameter name shown on the UI, resulting in a stored cross-site scripting vulnerability exploitable by users with Job/Configure permission...

5.4CVSS5.3AI score0.00102EPSS

Exploits0References2

Prion•added 2020/02/12 3:15 p.m.•16 views

Cross site scripting

3.5CVSS5.2AI score0.00102EPSS

Exploits0References2Affected Software1

CVE•added 2020/02/12 2:35 p.m.•75 views

CVE-2020-2112

CVE-2020-2112 affects Jenkins Git Parameter Plugin (versions

5.4CVSS5.2AI score0.00102EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/02/12 2:35 p.m.•10 views

CVE-2020-2112

5.3AI score0.00102EPSS

Exploits0References2

CVE•added 2020/02/12 2:35 p.m.•61 views

CVE-2020-2113

CVE-2020-2113 affects Jenkins Git Parameter Plugin versions 0.9.11 and earlier. The UI shows the default value without escaping, enabling stored XSS exploitable by users with Job/Configure permission. Affected component is the Git Parameter Plugin’s UI input handling; root cause is lack of escapi...

5.4CVSS5.2AI score0.00102EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/02/12 2:35 p.m.•13 views

CVE-2020-2113

5.3AI score0.00102EPSS

Exploits0References2

Positive Technologies•added 2020/02/12 12:0 a.m.•3 views

PT-2020-15319 · Jenkins · Jenkins Git Parameter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Parameter Plugin versions 0.9.11 and earlier Description: The issue results in a stored cross-site scripting vulnerability. It is exploitable by users with Job/Configure permission due to the parameter name not being escaped on th...

5.4CVSS5.2AI score0.00102EPSS

Exploits0References7

Positive Technologies•added 2020/02/12 12:0 a.m.•3 views

PT-2020-15320 · Jenkins · Jenkins Git Parameter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Parameter Plugin versions 0.9.11 and earlier Description: The issue results in a stored cross-site scripting vulnerability. This is exploitable by users with Job/Configure permission. The vulnerability occurs because the default...

5.4CVSS5.2AI score0.00102EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by