Lucene search
+L

9 matches found

redhatcve
redhatcve
added 2025/05/22 11:3 p.m.9 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS5.4AI score0.00606EPSS
Exploits0References1
osv
osv
added 2022/06/24 12:0 a.m.39 views

GHSA-GPW4-7MCW-M8VX Cross-site Scripting in Jenkins Package Version Plugin

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission. Exploitation of this vulnerability requires...

8CVSS5.7AI score0.00606EPSS
Exploits0References3
github
github
added 2022/06/24 12:0 a.m.38 views

Cross-site Scripting in Jenkins Package Version Plugin

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission. Exploitation of this vulnerability requires...

5.4CVSS5.7AI score0.00606EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2022/06/23 5:15 p.m.0 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS6.2AI score0.00606EPSS
Exploits0References2
osv
osv
added 2022/06/23 5:15 p.m.2 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS6.2AI score0.00606EPSS
Exploits0References1
nvd
nvd
added 2022/06/23 5:15 p.m.16 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS0.00606EPSS
Exploits0References1
prion
prion
added 2022/06/23 5:15 p.m.20 views

Cross site scripting

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

3.5CVSS5.2AI score0.00606EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/06/22 2:41 p.m.96 views

CVE-2022-34193

CVE-2022-34193 relates to the Jenkins Package Version Plugin (versions ≤ 1.0.1). The issue is a stored XSS vulnerability: the plugin does not escape the name of Package version parameters on views displaying parameters, enabling an attacker with Item/Configure permission to inject script. The con...

5.4CVSS5.2AI score0.00606EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/06/22 2:41 p.m.21 views

CVE-2022-34193

Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

6.8AI score0.00606EPSS
Exploits0References1
Rows per page
Query Builder