CVE-2022-43425

CVE-2022-43425 affects Jenkins Custom Checkbox Parameter Plugin (versions ≤ 1.4). The issue is a stored XSS caused by not escaping the name/description of Custom Checkbox Parameter parameters on parameter-listing views, exploitable by users with Item/Configure permission. Exploitation requires pa...

Jenkins Custom Checkbox Parameter Plugin Cross-Site Scripting Vulnerability

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.A cross-site scripting vulnerability exists in Jenkins Custom Checkbox Parameter Plugin 1.1 and earlier versions, which ste...