Lucene search
Veracode Vulnerability DatabaseVERACODE:35872HistoryJun 03, 2022 - 2:55 p.m.
Cross-site Scripting (XSS)
2022-06-0314:55:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.001 Low
EPSS
Percentile
36.1%
jenkins is vulnerable to cross site scripting. The vulnerability exists due to a lack of sanitization of the name and description of List Subversion tags (and more) parameters on views displaying parameters.
References
seclists.org/fulldisclosure/2022/Jul/18
access.redhat.com/errata/RHSA-2022:2205
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=2074851
github.com/jenkinsci/subversion-plugin/commit/882a7d359f6ac73c53d787bff4d62eba837001ea
support.apple.com/kb/HT213345
www.jenkins.io/security/advisory/2022-04-12/
www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617
Related
nvd
nvd
CVE-2022-29046
2022-04-12 20:15:09
cve
cve
CVE-2022-29046
2022-04-12 20:15:09
cvelist
cvelist
CVE-2022-29046
2022-04-12 19:50:44
redhatcve
redhatcve
CVE-2022-29046
2022-04-13 09:22:34
cnvd
cnvd
Jenkins Subversion Plugin Cross-Site Scripting Vulnerability
2022-04-13 00:00:00
prion
prion
Cross site scripting
2022-04-12 20:15:00
github
github
Stored Cross-site Scripting vulnerability in Jenkins Subversion Plugin
2022-04-13 00:00:17
osv
osv
Stored Cross-site Scripting vulnerability in Jenkins Subversion Plugin
2022-04-13 00:00:17
nessus
nessus
RHEL 7 : OpenShift Container Platform 3.11.705 (RHSA-2022:2280)
2022-09-08 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.6.59 (RHSA-2022:4947)
2022-09-08 00:00:00
RHEL 8 : OpenShift Container Platform 4.7.52 paackages (RHSA-2022:4909)
2022-09-08 00:00:00
redhat
redhat
openvas
openvas
Apple Mac OS X Security Update (HT213345)
2022-07-22 00:00:00
apple
apple
About the security content of macOS Monterey 12.5
2022-07-20 00:00:00