Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2022-27197
- EPSS 1.5%
- Published 15.03.2022 17:15:10
- Last modified 21.11.2024 06:55:23
Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure views.
5.4
CVE-2021-21649
- EPSS 0.98%
- Published 11.05.2021 15:15:07
- Last modified 21.11.2024 05:48:46
Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
5.4
CVE-2019-10396
- EPSS 0.12%
- Published 12.09.2019 14:15:11
- Last modified 21.11.2024 04:19:02
Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build descriptions.
1