3 matches found
CVE-2022-45388
creationtimestamp| type| source ---|---|--- 2025-04-30 18:14:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14115...
CVE-2022-45388
CVE-2022-45388 affects Jenkins Config Rotator Plugin (versions 2.0.1 and earlier). The issue is an unrestricted file name query parameter in an HTTP endpoint, allowing unauthenticated attackers to read arbitrary files with a .xml extension on the Jenkins controller filesystem. Publicly available ...
CVE-2022-45388
Jenkins Config Rotator Plugin 2.0.1 and earlier does not restrict a file name query parameter in an HTTP endpoint, allowing unauthenticated attackers to read arbitrary files with '.xml' extension on the Jenkins controller file system...