Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jenkins build-metrics vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2022-34785
Jenkins build-metrics Plugin 1.3 and previous versions does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them.
Jenkins Build-metrics
4.3
CVSSv2
CVE-2019-10475
A reflected cross-site scripting vulnerability in Jenkins build-metrics Plugin allows malicious users to inject arbitrary HTML and JavaScript into web pages provided by this plugin.
Jenkins Build-metrics
1 EDB exploit
2 Github repositories
3.5
CVSSv2
CVE-2022-34784
Jenkins build-metrics Plugin 1.3 does not escape the build description on one of its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Build/Update permission.
Jenkins Build-metrics 1.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started