CVE-2022-25202
CVE-2022-25202 concerns the Jenkins Promoted Builds (Simple) Plugin, versions 1.9 and earlier. The vulnerability arises because the plugin does not escape the name of custom promotion levels, enabling a stored cross-site scripting (XSS) vulnerability. Exploitation requires attacker access with Ov...