pkg:maven/org.jenkins-ci.plugins/extended-choice-parameter
Type
maven
Namespace
org.jenkins-ci.plugins
Name
extended-choice-parameter
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/extended-choice-parameter package.
High
3
Moderate
4
Medium
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 346.vd87693c5a_86c |
CVE-2022-27204
CVE-2022-27205 |
 JENKINS:SECURITY-1350
|
CSRF vulnerability and missing permission checks in `extended-choice-parameter` allow SSRF | medium |
2022-03-15T00:00:00
(2 years ago) |
|
| Affected | <= 346.vd87693c5a_86c |
CVE-2022-27203
|
JENKINS:SECURITY-1351
|
Arbitrary JSON and property file read vulnerability in `extended-choice-parameter` | medium |
2022-03-15T00:00:00
(2 years ago) |
|
| Affected | <= 346.vd87693c5a_86c |
CVE-2022-27202
|
JENKINS:SECURITY-2232
|
Stored XSS vulnerability in `extended-choice-parameter` | high |
2022-03-15T00:00:00
(2 years ago) |
|
| Affected | <= 346.vd87693c5a_86c |
CVE-2022-29036
CVE-2022-29037 CVE-2022-29038 CVE-2022-29039 CVE-2022-29040 CVE-2022-29041 CVE-2022-29042 CVE-2022-29043 CVE-2022-29044 CVE-2022-29045 CVE-2022-29046 |
JENKINS:SECURITY-2617
|
Stored XSS vulnerabilities in multiple plugins providing additional parameter types | high |
2022-04-12T00:00:00
(2 years ago) |
|
| Affected | <= 346.vd87693c5a |
CVE-2022-27203
|
 MAVEN:GHSA-CH63-6CMG-GWG2
|
Arbitrary JSON and property file read vulnerability in Jenkins Extended Choice Parameter Plugin | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
| Affected | <= 346.vd87693c5a |
CVE-2022-27204
|
MAVEN:GHSA-FQPX-XFJR-2QR9
|
CSRF vulnerability and missing permission checks in Jenkins Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
| Fixed | = 356.va_90a_94ca_62ec |
CVE-2022-27204
|
MAVEN:GHSA-FQPX-XFJR-2QR9
|
CSRF vulnerability and missing permission checks in Jenkins Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:44
(2 years ago) |
|
| Affected | <= 346.vd87693c5a |
CVE-2022-29038
|
MAVEN:GHSA-GP7C-XMMM-7PQR
|
Stored Cross-site Scripting vulnerabilities in Jenkins Extended Choice Parameter Plugin | moderate |
2022-04-13T00:00:18
(2 years ago) |
|
| Affected | <= 346.vd87693c5a |
CVE-2022-27202
|
MAVEN:GHSA-H2V5-3HPC-85J5
|
Stored Cross-site Scripting vulnerability in Jenkins Extended Choice Parameter Plugin | high |
2022-03-16T00:00:44
(2 years ago) |
|
| Affected | <= 346.vd87693c5a |
CVE-2022-27205
|
MAVEN:GHSA-X95C-QRQR-2V27
|
CSRF vulnerability and missing permission checks in Extended Choice Parameter Plugin allow SSRF | moderate |
2022-03-16T00:00:43
(2 years ago) |