Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-3371

Malicious code in bioql PyPI...

5.4CVSS5.4AI score0.83053EPSS
Exploits3References11
Github Security Blog
Github Security Blog
added 2022/05/24 5:25 p.m.25 views

Jenkins Cross-site Scripting vulnerability in project naming strategy

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the project naming strategy description, that is displayed on item creation.\n\nThis results in a stored cross-site scripting XSS vulnerability exploitable by users with Overall/Manage permission.\n\nJenkins 2.252, LTS 2.235.4...

5.4CVSS5.3AI score0.83053EPSS
Exploits3References6Affected Software1
OSV
OSV
added 2022/05/24 5:25 p.m.3 views

GHSA-9G4M-FFX6-C29G Jenkins Cross-site Scripting vulnerability in project naming strategy

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the project naming strategy description, that is displayed on item creation.\n\nThis results in a stored cross-site scripting XSS vulnerability exploitable by users with Overall/Manage permission.\n\nJenkins 2.252, LTS 2.235.4...

8CVSS5.8AI score0.83053EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2020/10/22 10:49 a.m.4 views

jenkins: stored XSS vulnerability in project naming strategy

A flaw was found in Jenkins in versions prior to 2.251 and LTS 2.235.3. The project naming strategy description, displayed on item creation, is not properly escaped. This can result in a stored cross-site scripting XSS vulnerability exploitable by users with Overall/Manage permissions. The highes...

5.4CVSS5.6AI score0.83053EPSS
Exploits3References5
Veracode
Veracode
added 2020/10/01 3:52 a.m.30 views

Cross-site Scripting (XSS)

jenkins is vulnerable to cross-site scripting XSS. The vulnerability exists through the project naming strategy...

5.4CVSS1.6AI score0.83053EPSS
Exploits3References5Affected Software2
RedHat Linux
RedHat Linux
added 2020/09/30 6:56 p.m.8 views

jenkins: stored XSS vulnerability in project naming strategy

A flaw was found in Jenkins in versions prior to 2.251 and LTS 2.235.3. The project naming strategy description, displayed on item creation, is not properly escaped. This can result in a stored cross-site scripting XSS vulnerability exploitable by users with Overall/Manage permissions. The highes...

5.4CVSS5.6AI score0.83053EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2020/09/23 12:46 p.m.7 views

jenkins: stored XSS vulnerability in project naming strategy

A flaw was found in Jenkins in versions prior to 2.251 and LTS 2.235.3. The project naming strategy description, displayed on item creation, is not properly escaped. This can result in a stored cross-site scripting XSS vulnerability exploitable by users with Overall/Manage permissions. The highes...

5.4CVSS5.6AI score0.83053EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2020/08/13 12:0 a.m.35 views

FreeBSD : jenkins -- multiple vulnerabilities (eef0d2d9-78c0-441e-8b03-454c5baebe20)

Jenkins Security Advisory : DescriptionHigh SECURITY-1955 / CVE-2020-2229 Stored XSS vulnerability in help icons High SECURITY-1957 / CVE-2020-2230 Stored XSS vulnerability in project naming strategy High SECURITY-1960 / CVE-2020-2231 Stored XSS vulnerability in 'Trigger builds remotely' C Tenabl...

5.4CVSS6.1AI score0.83053EPSS
Exploits8References5
Positive Technologies
Positive Technologies
added 2020/08/12 12:0 a.m.5 views

PT-2020-15451 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.251 and earlier Jenkins LTS versions 2.235.3 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This occurs because the project naming strategy description is not properly escaped...

8CVSS5AI score0.83053EPSS
Exploits3References11
Rows per page
Query Builder