CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Cppcheck Security Vulnerabilities

CVE-2023-28678

Jenkins Cppcheck Plugin 1.26 and earlier does not escape file names from Cppcheck report files before showing them on the Jenkins UI, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control report file contents.

CVSS Score

5.4

EPSS Score

0.021

Published

2023-04-02

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Cppcheck Security Vulnerabilities

Products

Pricing

Contact Us