CVE-2022-34790
The vulnerability CVE-2022-34790 affects Jenkins and specifically the eXtreme Feedback Panel Plugin (versions 2.0.1 and earlier). Root cause: the plugin does not escape job names in tooltips, enabling a stored XSS. Impact: attackers with Item/Configure permission can exploit this to run malicious...