Jenkins Dashboard View vulnerabilities
3 known vulnerabilities affecting jenkins/dashboard_view.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2022-27197MEDIUMCVSS 5.4fixed in 2.18.12022-03-15
CVE-2022-27197 [MEDIUM] CWE-79 CVE-2022-27197: Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portle
Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure views.
nvd
CVE-2021-21649MEDIUMCVSS 5.4≤ 2.152021-05-11
CVE-2021-21649 [MEDIUM] CWE-79 CVE-2021-21649: Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Po
Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
nvd
CVE-2019-10396MEDIUMCVSS 5.4≤ 2.112019-09-12
CVE-2019-10396 [MEDIUM] CWE-79 CVE-2019-10396: Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cro
Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build descriptions.
nvd