cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-34789,https://securityvulnerability.io/vulnerability/CVE-2022-34789,CSRF Vulnerability in Jenkins Matrix Reloaded Plugin by Jenkins,"A cross-site request forgery (CSRF) vulnerability exists in the Jenkins Matrix Reloaded Plugin, specifically in versions 1.1.3 and earlier. This flaw enables attackers to manipulate the Jenkins server's behavior by initiating unauthorized rebuilds of previous matrix builds. By exploiting this vulnerability, an attacker can bypass user authentication procedures, posing a risk to the integrity of build processes and potentially leading to unauthorized access or erroneous build executions.",Jenkins,Jenkins Matrix Reloaded Plugin,6.5,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2022-06-30T17:47:04.000Z,0
CVE-2022-34788,https://securityvulnerability.io/vulnerability/CVE-2022-34788,Stored Cross-Site Scripting Vulnerability in Jenkins Matrix Reloaded Plugin,"The Jenkins Matrix Reloaded Plugin versions 1.1.3 and earlier are susceptible to a stored cross-site scripting vulnerability. This occurs due to insufficient escaping of agent names in tooltips, allowing attackers with Agent/Configure permissions to inject malicious scripts. Exploitation of this vulnerability can lead to unauthorized actions within the Jenkins environment, posing a significant risk to the integrity and security of the system.",Jenkins,Jenkins Matrix Reloaded Plugin,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2022-06-30T17:46:56.000Z,0