Vulnerabilities > Jenkins > Matrix Reloaded > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-30 | CVE-2022-34788 | Cross-site Scripting vulnerability in Jenkins Matrix Reloaded Jenkins Matrix Reloaded Plugin 1.1.3 and earlier does not escape the agent name in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Agent/Configure permission. | 5.4 |
| 2022-06-30 | CVE-2022-34789 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Matrix Reloaded A cross-site request forgery (CSRF) vulnerability in Jenkins Matrix Reloaded Plugin 1.1.3 and earlier allows attackers to rebuild previous matrix builds. | 6.5 |