CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Favorite Security Vulnerabilities

CVE-2022-27196

Jenkins Favorite Plugin 2.4.0 and earlier does not escape the names of jobs in the favorite column, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure or Item/Create permissions.

CVSS Score

5.4

EPSS Score

0.2

Published

2022-03-15

CVE-2017-1000244

Jenkins Favorite Plugin version 2.2.0 and older is vulnerable to CSRF resulting in data modification

CVSS Score

8.8

EPSS Score

0.001

Published

2017-11-01

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Favorite Security Vulnerabilities

Products

Pricing

Contact Us