[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-29036":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":45,"duplicate_of":9,"upstream":47,"downstream":48,"duplicates":61,"related":62,"reserved_at":9,"published_at":63,"modified_at":64,"state":65,"summary":66,"references_raw":75,"kevs":89,"epss":90,"epss_history":93,"metrics":336,"affected":349},"CVE-2022-29036","Jenkins Credentials Plugin 1111.v35a_307992395 and earlier, except 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, and 2.6.1.1, does not escape the name and description of Credentials parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[],[46],"GHSA-rvg5-f5fj-mxvg",[],[49,51,53,55,57,59],{"_key":50},"RHSA-2022:1600",{"_key":52},"RHSA-2022:2205",{"_key":54},"RHSA-2022:4909",{"_key":56},"RHSA-2022:0871",{"_key":58},"RHSA-2022:4947",{"_key":60},"RHSA-2022:2280",[],[],"2022-04-12T00:00:00.000Z","2024-08-03T06:10:58.182Z","Modified",{"cisa_kev":67,"cisa_ransomware":67,"cisa_vendor":9,"epss_severity":68,"epss_score":69,"severity":70,"severity_score":71,"severity_version":72,"severity_source":73,"severity_vector":74,"severity_status":65},false,"low",0.00355,"medium",5.4,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",[76,84],{"url":77,"sources":78,"tags":81},"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617",[79,73,80],"cve.org","osv_maven",[82,83],"Vendor Advisory","WEB",{"url":85,"sources":86,"tags":87},"https://nvd.nist.gov/vuln/detail/CVE-2022-29036",[80],[88],"Advisory",[],{"date":91,"score":69,"percentile":92},"2026-06-04",0.58074,[94,98,101,103,106,108,111,113,116,118,121,124,126,129,131,135,138,141,144,147,149,152,155,158,161,163,166,169,172,175,177,180,183,185,188,190,193,196,199,202,204,207,210,213,216,219,222,225,228,230,232,235,238,241,244,247,249,251,253,256,259,262,264,267,270,272,274,276,278,280,283,285,287,289,291,294,297,299,301,303,306,309,312,315,318,321,324,327,329,332],{"date":95,"score":96,"percentile":97},"2025-11-04",0.16348,0.94571,{"date":99,"score":96,"percentile":100},"2025-11-05",0.9457,{"date":102,"score":96,"percentile":97},"2025-11-06",{"date":104,"score":96,"percentile":105},"2025-11-07",0.94573,{"date":107,"score":96,"percentile":100},"2025-11-08",{"date":109,"score":96,"percentile":110},"2025-11-09",0.94568,{"date":112,"score":96,"percentile":110},"2025-11-10",{"date":114,"score":96,"percentile":115},"2025-11-11",0.94569,{"date":117,"score":96,"percentile":105},"2025-11-12",{"date":119,"score":96,"percentile":120},"2025-11-13",0.94574,{"date":122,"score":96,"percentile":123},"2025-11-14",0.94576,{"date":125,"score":96,"percentile":97},"2025-11-15",{"date":127,"score":96,"percentile":128},"2025-11-16",0.94575,{"date":130,"score":96,"percentile":128},"2025-11-17",{"date":132,"score":133,"percentile":134},"2025-11-18",0.14352,0.9379,{"date":136,"score":133,"percentile":137},"2025-11-19",0.93793,{"date":139,"score":133,"percentile":140},"2025-11-20",0.93799,{"date":142,"score":96,"percentile":143},"2025-11-21",0.94582,{"date":145,"score":96,"percentile":146},"2025-11-22",0.9458,{"date":148,"score":96,"percentile":143},"2025-11-23",{"date":150,"score":96,"percentile":151},"2025-11-24",0.94584,{"date":153,"score":96,"percentile":154},"2025-11-25",0.94587,{"date":156,"score":96,"percentile":157},"2025-11-26",0.94589,{"date":159,"score":96,"percentile":160},"2025-11-27",0.94592,{"date":162,"score":96,"percentile":157},"2025-11-28",{"date":164,"score":96,"percentile":165},"2025-11-29",0.94593,{"date":167,"score":96,"percentile":168},"2025-11-30",0.9459,{"date":170,"score":96,"percentile":171},"2025-12-01",0.94635,{"date":173,"score":96,"percentile":174},"2025-12-02",0.94634,{"date":176,"score":96,"percentile":174},"2025-12-03",{"date":178,"score":96,"percentile":179},"2025-12-04",0.94585,{"date":181,"score":96,"percentile":182},"2025-12-05",0.94588,{"date":184,"score":96,"percentile":182},"2025-12-06",{"date":186,"score":96,"percentile":187},"2025-12-07",0.94594,{"date":189,"score":96,"percentile":187},"2025-12-08",{"date":191,"score":96,"percentile":192},"2025-12-09",0.94599,{"date":194,"score":96,"percentile":195},"2025-12-10",0.94605,{"date":197,"score":96,"percentile":198},"2025-12-11",0.94609,{"date":200,"score":96,"percentile":201},"2025-12-12",0.94611,{"date":203,"score":96,"percentile":201},"2025-12-13",{"date":205,"score":96,"percentile":206},"2025-12-14",0.9461,{"date":208,"score":96,"percentile":209},"2025-12-15",0.94615,{"date":211,"score":96,"percentile":212},"2025-12-16",0.94617,{"date":214,"score":96,"percentile":215},"2025-12-17",0.94621,{"date":217,"score":96,"percentile":218},"2025-12-18",0.94622,{"date":220,"score":96,"percentile":221},"2025-12-19",0.94624,{"date":223,"score":96,"percentile":224},"2025-12-20",0.94625,{"date":226,"score":96,"percentile":227},"2025-12-21",0.94626,{"date":229,"score":96,"percentile":227},"2025-12-22",{"date":231,"score":96,"percentile":227},"2025-12-23",{"date":233,"score":96,"percentile":234},"2025-12-24",0.94632,{"date":236,"score":96,"percentile":237},"2025-12-25",0.94639,{"date":239,"score":96,"percentile":240},"2025-12-26",0.94638,{"date":242,"score":96,"percentile":243},"2025-12-27",0.94665,{"date":245,"score":96,"percentile":246},"2025-12-28",0.94633,{"date":248,"score":96,"percentile":246},"2025-12-29",{"date":250,"score":96,"percentile":174},"2025-12-30",{"date":252,"score":96,"percentile":237},"2025-12-31",{"date":254,"score":96,"percentile":255},"2026-01-01",0.94682,{"date":257,"score":96,"percentile":258},"2026-01-02",0.94676,{"date":260,"score":96,"percentile":261},"2026-01-03",0.94673,{"date":263,"score":96,"percentile":234},"2026-01-04",{"date":265,"score":96,"percentile":266},"2026-01-05",0.94628,{"date":268,"score":96,"percentile":269},"2026-01-06",0.94627,{"date":271,"score":96,"percentile":266},"2026-01-07",{"date":273,"score":96,"percentile":246},"2026-01-08",{"date":275,"score":96,"percentile":174},"2026-01-09",{"date":277,"score":96,"percentile":246},"2026-01-10",{"date":279,"score":96,"percentile":234},"2026-01-11",{"date":281,"score":96,"percentile":282},"2026-01-12",0.94629,{"date":284,"score":96,"percentile":282},"2026-01-13",{"date":286,"score":96,"percentile":171},"2026-01-14",{"date":288,"score":96,"percentile":171},"2026-01-15",{"date":290,"score":96,"percentile":240},"2026-01-16",{"date":292,"score":96,"percentile":293},"2026-01-17",0.9464,{"date":295,"score":96,"percentile":296},"2026-01-18",0.94637,{"date":298,"score":96,"percentile":246},"2026-01-19",{"date":300,"score":96,"percentile":240},"2026-01-20",{"date":302,"score":96,"percentile":237},"2026-01-21",{"date":304,"score":96,"percentile":305},"2026-01-22",0.94641,{"date":307,"score":96,"percentile":308},"2026-01-23",0.94647,{"date":310,"score":96,"percentile":311},"2026-01-24",0.94651,{"date":313,"score":96,"percentile":314},"2026-01-25",0.94652,{"date":316,"score":96,"percentile":317},"2026-01-26",0.94655,{"date":319,"score":96,"percentile":320},"2026-01-27",0.94654,{"date":322,"score":96,"percentile":323},"2026-01-28",0.94657,{"date":325,"score":96,"percentile":326},"2026-01-29",0.94659,{"date":328,"score":96,"percentile":326},"2026-01-30",{"date":330,"score":96,"percentile":331},"2026-01-31",0.94661,{"date":333,"score":334,"percentile":335},"2026-02-01",0.12722,0.93835,[337,347],{"source":73,"cvss_v2_0":338,"cvss_v3_0":9,"cvss_v3_1":343,"cvss_v4_0":9},{"baseScore":339,"baseSeverity":9,"vectorString":340,"impactScore":341,"exploitabilityScore":342},3.5,"AV:N/AC:M/Au:S/C:N/I:P/A:N",2.9,6.8,{"baseScore":71,"baseSeverity":344,"vectorString":74,"impactScore":345,"exploitabilityScore":346},"MEDIUM",4.5,5.9,{"source":80,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":348,"cvss_v4_0":9},{"baseScore":71,"baseSeverity":9,"vectorString":74,"impactScore":345,"exploitabilityScore":346},[350,362,379],{"ecosystem":9,"name":351,"vendor":352,"product":353,"cpe_part":354,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":355},"Jenkins Credentials Plugin","jenkins project","jenkins credentials plugin","a",[356],{"version":357,"is_range":358,"range_type":79,"version_start":359,"version_start_type":360,"version_end":361,"version_end_type":360,"fixed_in":9},">= unspecified, \u003C= 1111.v35a_307992395",true,"unspecified","including","1111.v35a_307992395",{"ecosystem":9,"name":363,"vendor":364,"product":363,"cpe_part":354,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":365},"credentials","jenkins",[366,371,375],{"version":367,"is_range":358,"range_type":368,"version_start":9,"version_start_type":9,"version_end":369,"version_end_type":370,"fixed_in":9},"lt2.6.1.1","cpe","2.6.1.1","excluding",{"version":372,"is_range":358,"range_type":368,"version_start":373,"version_start_type":360,"version_end":374,"version_end_type":370,"fixed_in":9},"gte1055.v1346ba467ba1_lt1074.1076.v39c30cecb_0e2","1055.v1346ba467ba1","1074.1076.v39c30cecb_0e2",{"version":376,"is_range":358,"range_type":368,"version_start":377,"version_start_type":360,"version_end":378,"version_end_type":370,"fixed_in":9},"gte1105.vb_4e24a_c78b_81_lt1112.vc87b_7a_3597f6","1105.vb_4e24a_c78b_81","1112.vc87b_7a_3597f6",{"ecosystem":380,"name":381,"vendor":382,"product":363,"cpe_part":9,"purl_type":383,"purl_namespace":382,"purl_name":363,"source":9,"versions":384},"Maven","org.jenkins-ci.plugins:credentials","org.jenkins-ci.plugins","maven",[385,388,391,395],{"version":386,"is_range":358,"range_type":387,"version_start":9,"version_start_type":9,"version_end":369,"version_end_type":370,"fixed_in":9},"lt2_6_1_1","ecosystem",{"version":389,"is_range":358,"range_type":387,"version_start":390,"version_start_type":360,"version_end":374,"version_end_type":370,"fixed_in":9},"gte2_6_2_lt1074_1076_v39c30cecb_0e2","2.6.2",{"version":392,"is_range":358,"range_type":387,"version_start":393,"version_start_type":360,"version_end":394,"version_end_type":370,"fixed_in":9},"gte1087_v16065d268466_lt1087_1089_v2f1b_9a_b_040e4","1087.v16065d268466","1087.1089.v2f1b_9a_b_040e4",{"version":396,"is_range":358,"range_type":387,"version_start":397,"version_start_type":360,"version_end":398,"version_end_type":360,"fixed_in":9},"gte1105_lte1111_v35a","1105","1111.v35a"]