Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

RedHat Linux
RedHat Linuxadded 2024/02/12 10:46 a.m.4 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2024/02/12 10:38 a.m.3 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/10/30 1:3 p.m.5 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/10/30 11:24 a.m.1 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/10/30 11:10 a.m.1 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/05/24 5:13 p.m.6 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/05/18 1:1 p.m.6 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/05/17 5:53 p.m.6 views

jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.6AI score0.6532EPSS
Exploits0References5
NVD
NVDadded 2023/02/15 2:15 p.m.21 views

CVE-2023-25762

Jenkins Pipeline: Build Step Plugin 2.18 and earlier does not escape job names in a JavaScript expression used in the Pipeline Snippet Generator, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control job names...

5.4CVSS6.6AI score0.6532EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2023/02/15 2:0 p.m.35 views

CVE-2023-25762

A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting XSS vulnerability that may allow attackers to...

5.4CVSS5.2AI score0.6532EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/05/04 6:22 p.m.3 views

pipeline-build-step: Password parameter default values exposed

A flaw was found in Jenkins pipeline-build-step where it revealed password parameter default values when generating a pipeline script using the Pipeline snippet generator. This flaw allows attackers with item/read permission to retrieve the default password parameter value from jobs and compromis...

6.5CVSS5.7AI score0.00088EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/03/29 7:5 a.m.3 views

pipeline-build-step: Password parameter default values exposed

A flaw was found in Jenkins pipeline-build-step where it revealed password parameter default values when generating a pipeline script using the Pipeline snippet generator. This flaw allows attackers with item/read permission to retrieve the default password parameter value from jobs and compromis...

6.5CVSS5.7AI score0.00088EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/03/28 11:56 a.m.3 views

pipeline-build-step: Password parameter default values exposed

A flaw was found in Jenkins pipeline-build-step where it revealed password parameter default values when generating a pipeline script using the Pipeline snippet generator. This flaw allows attackers with item/read permission to retrieve the default password parameter value from jobs and compromis...

6.5CVSS5.7AI score0.00088EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/02/15 12:0 a.m.2 views

Jenkins Pipeline 信息泄露漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.An information disclosure vulnerability exists in Jenkins Pipeline Build Step Plugin 2.15 and earlier versions, which stem...

6.5CVSS5.7AI score0.00088EPSS
Exploits0References18
Rows per page
Query Builder