Lucene search
Veracode Vulnerability DatabaseVERACODE:35347HistoryMay 04, 2022 - 5:21 a.m.
Cross-Site Scripting (XSS)
2022-05-0405:21:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site scripting
github
buildlog.vue
vulnerability
javascript
injection
EPSS
0.001
Percentile
26.2%
github.com/woodpecker-ci/woodpecker is vulnerable to cross-site scripting. The vulnerability exists in BuildLog.vue due to lack of escaping in build logs which allows an attacker to inject and execute arbitrary javascript.
Related
osv
osv
Woodpecker allows cross-site scripting (XSS) via build logs in github.com/woodpecker-ci/woodpecker
2024-08-21 15:11:31
Woodpecker allows cross-site scripting (XSS) via build logs
2022-04-30 00:00:33
CVE-2022-29947
2022-04-29 21:15:07
github
github
Woodpecker allows cross-site scripting (XSS) via build logs
2022-04-30 00:00:33
cnvd
cnvd
Woodpecker Cross-Site Scripting Vulnerability
2022-05-06 00:00:00
cvelist
cvelist
CVE-2022-29947
2022-04-29 20:23:22
cve
cve
CVE-2022-29947
2022-04-29 21:15:07
nvd
nvd
CVE-2022-29947
2022-04-29 21:15:07
prion
prion
Cross site scripting
2022-04-29 21:15:00