{"vulnerability": "CVE-2022-30962", "sightings": [{"uuid": "cf511808-e2a9-4639-a1df-d8b2c972aee6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-30962", "type": "seen", "source": "https://t.me/cibsecurity/42816", "content": "\u203c CVE-2022-30962 \u203c\n\nJenkins Global Variable String Parameter Plugin 1.2 and earlier does not escape the name and description of Global Variable String parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-17T18:27:43.000000Z"}, {"uuid": "72f1cc99-27e1-400e-91ea-ee759babeef1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-30962", "type": "seen", "source": "https://t.me/arpsyndicate/1892", "content": "#ExploitObserverAlert\n\nCVE-2022-30962\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-30962. Jenkins Global Variable String Parameter Plugin 1.2 and earlier does not escape the name and description of Global Variable String parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.\n\nFIRST-EPSS: 0.000770000\nNVD-IS: 2.7\nNVD-ES: 2.3", "creation_timestamp": "2023-12-18T02:21:32.000000Z"}]}