CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30965

Jenkins Promoted Builds (Simple) Plugin 1.9 and earlier does not escape the name and description of Promotion Level parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.316

EPSS Ranking 96.6%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2022-30965

Jenkins » Promoted Builds » Version: N/A

cpe:2.3:a:jenkins:promoted_builds:-
Jenkins » Promoted Builds » Version: 1.0

cpe:2.3:a:jenkins:promoted_builds:1.0
Jenkins » Promoted Builds » Version: 1.1

cpe:2.3:a:jenkins:promoted_builds:1.1
Jenkins » Promoted Builds » Version: 1.2

cpe:2.3:a:jenkins:promoted_builds:1.2
Jenkins » Promoted Builds » Version: 1.3

cpe:2.3:a:jenkins:promoted_builds:1.3
Jenkins » Promoted Builds » Version: 1.4

cpe:2.3:a:jenkins:promoted_builds:1.4
Jenkins » Promoted Builds » Version: 1.5

cpe:2.3:a:jenkins:promoted_builds:1.5
Jenkins » Promoted Builds » Version: 1.6

cpe:2.3:a:jenkins:promoted_builds:1.6
Jenkins » Promoted Builds » Version: 1.7

cpe:2.3:a:jenkins:promoted_builds:1.7
Jenkins » Promoted Builds » Version: 1.8

cpe:2.3:a:jenkins:promoted_builds:1.8
Jenkins » Promoted Builds » Version: 1.9

cpe:2.3:a:jenkins:promoted_builds:1.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30965

Products

Pricing

Contact Us