📦

sidebar_link

Vendor: jenkins

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 18 Total Indexed

Avg. EPSS 0.71% Exploit Prob.

Latest CVE CVE-2023-32985 May 16

Security Vulnerability Index

Page 1 / 2

4.3 CVSS

CVE-2023-32985

Jenkins Sidebar Link Plugin 2.2.1 and earlier does not restrict the path of files in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.

EPSS: 1.36%

Severity: MEDIUM

May 16, 2023

5.4 CVSS

CVE-2017-1000088

The Sidebar Link plugin allows users able to configure jobs, views, and agents to add entries to the sidebar of these objects. There was no input validation, which meant users were able to use javascript: schemes for these links.

EPSS: 0.06%

Severity: MEDIUM

Oct 05, 2017

Displaying 2 of 18 Total Entries

1 2

Total 2 Sections