Jenkins Testng Results
By the Year
In 2023 there have been 1 vulnerability in Jenkins Testng Results with an average score of 5.4 out of ten. Last year Testng Results had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Testng Results in 2023 could surpass last years number. Interestingly, the average vulnerability score and the number of vulnerabilities for 2023 and last year was the same.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 1 | 5.40 |
| 2022 | 1 | 5.40 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Testng Results vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Testng Results Security Vulnerabilities
Jenkins TestNG Results Plugin 730.v4c5283037693 and earlier does not escape several values
CVE-2023-32984
5.4 - Medium
- May 16, 2023
Jenkins TestNG Results Plugin 730.v4c5283037693 and earlier does not escape several values that are parsed from TestNG report files and displayed on the plugin's test information pages, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide a crafted TestNG report file.
XSS
Jenkins TestNG Results Plugin 554.va4a552116332 and earlier renders the unescaped test descriptions and exception messages provided in test results if certain job-level options are set
CVE-2022-34778
5.4 - Medium
- June 30, 2022
Jenkins TestNG Results Plugin 554.va4a552116332 and earlier renders the unescaped test descriptions and exception messages provided in test results if certain job-level options are set, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers able to configure jobs or control test results.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Testng Results or by Jenkins? Click the Watch button to subscribe.
