Jenkins Project Jenkins Dashboard View Plugin vulnerabilities
3 known vulnerabilities affecting jenkins_project/jenkins_dashboard_view_plugin.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2022-27197MEDIUMCVSS 5.4≥ unspecified, ≤ 2.182022-03-15
CVE-2022-27197 [MEDIUM] CWE-79 CVE-2022-27197: Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portle
Jenkins Dashboard View Plugin 2.18 and earlier does not perform URL validation for the Iframe Portlet's Iframe source URL, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure views.
cvelistv5nvd
CVE-2021-21649MEDIUMCVSS 5.4≥ unspecified, ≤ 2.152021-05-11
CVE-2021-21649 [MEDIUM] CWE-79 CVE-2021-21649: Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Po
Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
cvelistv5nvd
CVE-2019-10396MEDIUMCVSS 5.4v2.11 and earlier2019-09-12
CVE-2019-10396 [MEDIUM] CWE-79 CVE-2019-10396: Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cro
Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build descriptions.
cvelistv5nvd