Jenkins Pipeline Aggregator View
By the Year
In 2023 there have been 1 vulnerability in Jenkins Pipeline Aggregator View with an average score of 5.4 out of ten. Pipeline Aggregator View did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 1 | 5.40 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 5.40 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Pipeline Aggregator View vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Pipeline Aggregator View Security Vulnerabilities
Jenkins Pipeline Aggregator View Plugin 1.13 and earlier does not escape a variable representing the current view's URL in inline JavaScript
CVE-2023-28670
5.4 - Medium
- April 02, 2023
Jenkins Pipeline Aggregator View Plugin 1.13 and earlier does not escape a variable representing the current view's URL in inline JavaScript, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by authenticated attackers with Overall/Read permission.
XSS
Jenkins Pipeline Aggregator View Plugin 1.8 and earlier does not escape information shown on its view
CVE-2019-16564
5.4 - Medium
- December 17, 2019
Jenkins Pipeline Aggregator View Plugin 1.8 and earlier does not escape information shown on its view, resulting in a stored XSS vulnerability exploitable by attackers able to affects view content such as job display name or pipeline stage names.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Pipeline Aggregator View or by Jenkins? Click the Watch button to subscribe.
