Skip to main content

Sidebar Link

2 CVEs product

Monthly

CVE-2023-32985 Maven MEDIUM PATCH This Month

Jenkins Sidebar Link Plugin 2.2.1 and earlier does not restrict the path of files in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Sidebar Link
NVD
CVSS 3.1
4.3
EPSS
72.4%
CVE-2017-1000088 Maven MEDIUM PATCH This Month

The Sidebar Link plugin allows users able to configure jobs, views, and agents to add entries to the sidebar of these objects. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Sidebar Link
NVD
CVSS 3.0
5.4
EPSS
0.1%
EPSS 72% CVSS 4.3
MEDIUM PATCH This Month

Jenkins Sidebar Link Plugin 2.2.1 and earlier does not restrict the path of files in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Path Traversal Sidebar Link
NVD
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

The Sidebar Link plugin allows users able to configure jobs, views, and agents to add entries to the sidebar of these objects. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Sidebar Link
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy