Lucene search
Veracode Vulnerability DatabaseVERACODE:36766HistoryAug 20, 2022 - 9:46 a.m.
Cross-site Scripting (XSS)
2022-08-2009:46:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
jenkins
xss
vulnerability
unescaped
tooltip
parameters
attacker
inject
execute
javascript
software
0.001 Low
EPSS
Percentile
22.0%
jenkins is vulnerable to cross-site scripting. The vulnerability exists because the symbol-based icons unescape previously escaped values of tooltip parameters, allowing an attacker to inject and execute malicious javascript
Related
cve
cve
CVE-2022-34172
2022-06-23 17:15:15
nvd
nvd
CVE-2022-34172
2022-06-23 17:15:15
prion
prion
Cross site scripting
2022-06-23 17:15:00
redhatcve
redhatcve
CVE-2022-34172
2022-08-19 05:14:52
osv
osv
BIT-jenkins-2022-34172
2024-03-06 10:57:42
Cross-site Scripting vulnerability in Jenkins
2022-06-24 00:00:31
CVE-2022-34172
2022-06-23 17:15:15
cvelist
cvelist
CVE-2022-34172
2022-06-22 14:40:53
cnvd
cnvd
Jenkins Cross-Site Scripting Vulnerability (CNVD-2022-65923)
2022-06-27 00:00:00
github
github
Cross-site Scripting vulnerability in Jenkins
2022-06-24 00:00:31
alpinelinux
alpinelinux
CVE-2022-34172
2022-06-23 17:15:15
openvas
openvas
nessus
nessus
FreeBSD : jenkins -- multiple vulnerabilities (25be46f0-f25d-11ec-b62a-00e081b7aa2d)
2022-06-23 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-06-22)
2022-07-15 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2022-06-22 00:00:00