CVE-2022-27213

Jenkins Environment Dashboard Plugin 1.1.10 and earlier does not escape the Environment order and the Component order configuration values in its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
Configurations

Configuration 1

cpe:2.3:a:jenkins:environment_dashboard:*:*:*:*:*:jenkins:*:*

Information

Published : 2022-03-15 05:15

Updated : 2022-03-25 12:07


NVD link : CVE-2022-27213

Mitre link : CVE-2022-27213

Products Affected
No products.
CWE