cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-28670,https://securityvulnerability.io/vulnerability/CVE-2023-28670,Stored Cross-Site Scripting in Jenkins Pipeline Aggregator View Plugin,"The Jenkins Pipeline Aggregator View Plugin prior to version 1.14 is susceptible to a stored cross-site scripting (XSS) vulnerability. This issue arises from the failure to adequately escape the variable that holds the current view's URL within inline JavaScript. Authenticated users with Overall/Read permissions may exploit this vulnerability, leading to potential injection and execution of malicious scripts in the context of other users’ browsers.",Jenkins,Jenkins Pipeline Aggregator View Plugin,5.4,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2023-04-02T21:15:00.000Z,0
CVE-2019-16564,https://securityvulnerability.io/vulnerability/CVE-2019-16564,,"Jenkins Pipeline Aggregator View Plugin 1.8 and earlier does not escape information shown on its view, resulting in a stored XSS vulnerability exploitable by attackers able to affects view content such as job display name or pipeline stage names.",Jenkins,Jenkins Pipeline Aggregator View Plugin,5.4,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2019-12-17T14:40:51.000Z,0