3 matches found
CVE-2022-45401
Jenkins Associated Files Plugin 0.2.1 and earlier does not escape names of associated files, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-45401
Jenkins Associated Files Plugin 0.2.1 and earlier does not escape names of associated files, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2022-45401
CVE-2022-45401 affects Jenkins Associated Files Plugin (versions 0.2.1 and earlier). The flaw is a stored XSS due to the plugin not escaping the names of associated files, enabling an attacker with Item/Configure permission to exploit it. The public documents confirm the vulnerability exists but ...