Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-28159 | 1 Jenkins | 1 Tests Selector | 2022-04-04 | 3.5 LOW | 5.4 MEDIUM |
Jenkins Tests Selector Plugin 1.3.3 and earlier does not escape the Properties File Path option for Choosing Tests parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. | |||||
CVE-2022-28160 | 1 Jenkins | 1 Tests Selector | 2022-04-04 | 4.0 MEDIUM | 6.5 MEDIUM |
Jenkins Tests Selector Plugin 1.3.3 and earlier allows users with Item/Configure permission to read arbitrary files on the Jenkins controller. |