Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/08/04 12:0 a.m.55 views

Jenkins plugins Multiple Vulnerabilities (2022-06-30)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins GitLab Plugin 1.5.34 and earlier does not escape multiple fields inserted into the description of webhook-triggered builds, resulti...

8.8CVSS6AI score0.80407EPSS
Exploits0References43
Github Security Blog
Github Security Blog
added 2022/07/01 12:1 a.m.35 views

Cross-site Scripting in Jenkins Validating Email Parameter Plugin

Jenkins Validating Email Parameter Plugin 1.10 and earlier does not escape the name and description of its parameter type. Additionally, it disables the security hardening added in Jenkins 2.44 and LTS 2.32.2 as part of the SECURITY-353 / CVE-2017-2601 fix that protects the "Build With...

5.4CVSS5.7AI score0.00602EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/06/30 6:15 p.m.11 views

CVE-2022-34791

Jenkins Validating Email Parameter Plugin 1.10 and earlier does not escape the name and description of its parameter type, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.4CVSS0.00602EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/30 5:47 p.m.31 views

CVE-2022-34791

Jenkins Validating Email Parameter Plugin 1.10 and earlier does not escape the name and description of its parameter type, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

5.7AI score0.00602EPSS
Exploits0References1
CVE
CVE
added 2022/06/30 5:47 p.m.271 views

CVE-2022-34791

CVE-2022-34791 affects the Jenkins Validating Email Parameter Plugin versions 1.10 and earlier . The vulnerability arises because the plugin does not escape the name and description of its parameter type, leading to a stored XSS vulnerability exploitable by attackers who have the Item/Configure p...

5.4CVSS5.4AI score0.00602EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder