cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-27197,https://securityvulnerability.io/vulnerability/CVE-2022-27197,Stored Cross-Site Scripting in Jenkins Dashboard View Plugin,"The Jenkins Dashboard View Plugin versions up to 2.18 lack proper URL validation for the Iframe Portlet's Iframe source URL. This absence of validation potentially allows attackers to exploit the system by configuring views, leading to a stored cross-site scripting vulnerability. It is critical for users of these versions to upgrade to mitigate the risk associated with this security flaw.",Jenkins,Jenkins Dashboard View Plugin,5.4,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2022-03-15T16:45:40.000Z,0
CVE-2021-21649,https://securityvulnerability.io/vulnerability/CVE-2021-21649,,"Jenkins Dashboard View Plugin 2.15 and earlier does not escape URLs referenced in Image Dashboard Portlets, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.",Jenkins,Jenkins Dashboard View Plugin,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2021-05-11T14:15:21.000Z,0
CVE-2019-10396,https://securityvulnerability.io/vulnerability/CVE-2019-10396,,"Jenkins Dashboard View Plugin 2.11 and earlier did not escape build descriptions, resulting in a cross-site scripting vulnerability exploitable by users able to change build descriptions.",Jenkins,Jenkins Dashboard View Plugin,5.4,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2019-09-12T13:55:15.000Z,0