Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jenkins mashup portlets vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-28679
Jenkins Mashup Portlets Plugin 1.1.2 and previous versions provides the "Generic JS Portlet" feature that lets a user populate a portlet using a custom JavaScript expression, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by authenticated att...
Jenkins Mashup Portlets
4
CVSSv2
CVE-2019-10347
Jenkins Mashup Portlets Plugin stored credentials unencrypted on the Jenkins master where they can be viewed by users with access to the master file system.