Sonargraph Integration Jenkins Sonargraph Integration

Do you want an email whenever new security vulnerabilities are reported in Jenkins Sonargraph Integration?

By the Year

In 2023 there have been 1 vulnerability in Jenkins Sonargraph Integration with an average score of 5.4 out of ten. Sonargraph Integration did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.

Year Vulnerabilities Average Score
2023 1 5.40
2022 0 0.00
2021 0 0.00
2020 1 5.40
2019 0 0.00
2018 0 0.00

It may take a day or so for new Sonargraph Integration vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Sonargraph Integration Security Vulnerabilities

Jenkins Sonargraph Integration Plugin 5.0.1 and earlier does not escape the file path and the project name for the Log file field form validation

CVE-2023-35145 5.4 - Medium - June 14, 2023

Jenkins Sonargraph Integration Plugin 5.0.1 and earlier does not escape the file path and the project name for the Log file field form validation, resulting in a stored cross-site scripting vulnerability exploitable by attackers with Item/Configure permission.

XSS

Jenkins Sonargraph Integration Plugin 3.0.0 and earlier does not escape the file path for the Log file field form validation

CVE-2020-2201 5.4 - Medium - July 02, 2020

Jenkins Sonargraph Integration Plugin 3.0.0 and earlier does not escape the file path for the Log file field form validation, resulting in a stored cross-site scripting vulnerability.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Sonargraph Integration or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

subscribe