CVE-2022-34784 Archives - RedPacket Security

Vulnerabilities

Jenkins build-metrics Plugin cross-site scripting | CVE-2022-34784

NAME Jenkins build-metrics Plugin cross-site scripting Platforms Affected:Jenkins build-metrics Plugin 1.3Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins build-metrics Plugin is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by…

Continue Reading . . .

What about ...?

Risky Business: Enterprises Can’t Shake Log4j flaw

HackerOne Bug Bounty Disclosure: many-commands-can-be-manipulated-to-delete-identities-or-affiliationsbycet2000

HackerOne Bug Bounty Disclosure: read-only-administrator-can-change-agent-update-settingsbymega7

CISA: CISA Releases Cybersecurity Toolkit to Protect U.S. Elections