CVE-2022-27196
CVE-2022-27196
Jenkins Favorite Plugin 2.4.0 and earlier does not escape the names of jobs in the favorite column, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure or Item/Create permissions.
Produtos afetados
Jenkins project · Jenkins Favorite PluginQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →