Vulnerabilities > Jenkins > Environment Dashboard > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-03-15 CVE-2022-27213 Cross-site Scripting vulnerability in Jenkins Environment Dashboard
Jenkins Environment Dashboard Plugin 1.1.10 and earlier does not escape the Environment order and the Component order configuration values in its views, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with View/Configure permission.
network
low complexity
jenkins CWE-79
5.4