logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-34184

Description

Jenkins CRX Content Package Deployer Plugin 1.9 and earlier does not escape the name and description of CRX Content Package Choice parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.


Affected Software


CPE Name Name Version
jenkins:crx_content_package_deployer jenkins crx content package deployer 1.9

Related