pkg:maven/org.jenkins-ci.plugins/extended-choice-parameter
Type
maven
Namespace
org.jenkins-ci.plugins
Name
extended-choice-parameter
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/extended-choice-parameter package.
High
3
Moderate
4
Medium
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 346.vd87693c5a_86c |
CVE-2022-27204
CVE-2022-27205 |
JENKINS:SECURITY-1350 | CSRF vulnerability and missing permission checks in `extended-choice-parameter` allow SSRF | medium |
2022-03-15T00:00:00
(2 years ago) |
|
Affected | <= 346.vd87693c5a_86c |
CVE-2022-27203
|
JENKINS:SECURITY-1351 | Arbitrary JSON and property file read vulnerability in `extended-choice-parameter` | medium |
2022-03-15T00:00:00
(2 years ago) |
|
Affected | <= 346.vd87693c5a_86c |
CVE-2022-27202
|
JENKINS:SECURITY-2232 | Stored XSS vulnerability in `extended-choice-parameter` | high |
2022-03-15T00:00:00
(2 years ago) |
|
Affected | <= 346.vd87693c5a_86c |
CVE-2022-29036
CVE-2022-29037 CVE-2022-29038 CVE-2022-29039 CVE-2022-29040 CVE-2022-29041 CVE-2022-29042 CVE-2022-29043 CVE-2022-29044 CVE-2022-29045 CVE-2022-29046 |
JENKINS:SECURITY-2617 | Stored XSS vulnerabilities in multiple plugins providing additional parameter types | high |
2022-04-12T00:00:00
(2 years ago) |
|
Affected | <= 346.vd87693c5a |
CVE-2022-27203
|
MAVEN:GHSA-CH63-6CMG-GWG2 | Arbitrary JSON and property file read vulnerability in Jenkins Extended Choice Parameter Plugin | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
Affected | <= 346.vd87693c5a |
CVE-2022-27204
|
MAVEN:GHSA-FQPX-XFJR-2QR9 | CSRF vulnerability and missing permission checks in Jenkins Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
Fixed | = 356.va_90a_94ca_62ec |
CVE-2022-27204
|
MAVEN:GHSA-FQPX-XFJR-2QR9 | CSRF vulnerability and missing permission checks in Jenkins Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
Affected | <= 346.vd87693c5a |
CVE-2022-29038
|
MAVEN:GHSA-GP7C-XMMM-7PQR | Stored Cross-site Scripting vulnerabilities in Jenkins Extended Choice Parameter Plugin | moderate |
2022-04-13T00:00:18
(2 years ago) |
|
Affected | <= 346.vd87693c5a |
CVE-2022-27202
|
MAVEN:GHSA-H2V5-3HPC-85J5 | Stored Cross-site Scripting vulnerability in Jenkins Extended Choice Parameter Plugin | high |
2022-03-16T00:00:44
(2 years ago) |
|
Affected | <= 346.vd87693c5a |
CVE-2022-27205
|
MAVEN:GHSA-X95C-QRQR-2V27 | CSRF vulnerability and missing permission checks in Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:43
(2 years ago) |