← Back

Tests Selector

tests_selector

Vendor: Jenkins • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-28160
1Jenkins
1Tests Selector
Nov 21, 2024
Mar 29, 2022
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
Jenkins Tests Selector Plugin 1.3.3 and earlier allows users with Item/Configure permission to read arbitrary files on the Jenkins controller.
CVE-2022-28159
1Jenkins
1Tests Selector
Nov 21, 2024
Mar 29, 2022
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
Jenkins Tests Selector Plugin 1.3.3 and earlier does not escape the Properties File Path option for Choosing Tests parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with...Show more
Jenkins Tests Selector Plugin 1.3.3 and earlier does not escape the Properties File Path option for Choosing Tests parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.Show less