Nested View

nested_view

Vendor: Jenkins • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-34182 1Jenkins 1Nested View Nov 21, 2024 Jun 23, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Jenkins Nested View Plugin 1.20 through 1.25 (both inclusive) does not escape search parameters, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2021-21680 1Jenkins 1Nested View Nov 21, 2024 Aug 31, 2021 N/A· v4 7.1 HIGH· v3 5.5 MEDIUM· v2 Jenkins Nested View Plugin 1.20 and earlier does not configure its XML transformer to prevent XML external entity (XXE) attacks.