Skip to main content

Sitemonitor

2 CVEs product

Monthly

CVE-2022-28153 Maven MEDIUM This Month

Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Sitemonitor
NVD
CVSS 3.1
5.4
EPSS
0.8%
CVE-2019-10317 Maven MEDIUM PATCH This Month

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Jenkins Information Disclosure Sitemonitor
NVD
CVSS 3.0
5.9
EPSS
1.5%
EPSS 1% CVSS 5.4
MEDIUM This Month

Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Sitemonitor
NVD
EPSS 1% CVSS 5.9
MEDIUM PATCH This Month

Jenkins SiteMonitor Plugin 0.5 and earlier disabled SSL/TLS and hostname verification globally for the Jenkins master JVM. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Jenkins Information Disclosure Sitemonitor
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy