Plot

plot

Vendor: Jenkins • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-46682 1Jenkins 1Plot Apr 23, 2025 Dec 12, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Jenkins Plot Plugin 2.1.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2022-34783 1Jenkins 1Plot Nov 21, 2024 Jun 30, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Jenkins Plot Plugin 2.1.10 and earlier does not escape plot descriptions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.