Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jenkins build-metrics vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2022-34785
Jenkins build-metrics Plugin 1.3 and previous versions does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them.
Jenkins Build-metrics
6.1
CVSSv3
CVE-2019-10475
A reflected cross-site scripting vulnerability in Jenkins build-metrics Plugin allows malicious users to inject arbitrary HTML and JavaScript into web pages provided by this plugin.
Jenkins Build-metrics
1 EDB exploit
2 Github repositories
5.4
CVSSv3
CVE-2022-34784
Jenkins build-metrics Plugin 1.3 does not escape the build description on one of its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Build/Update permission.
Jenkins Build-metrics 1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started