CVE-2022-25202

Jenkins Promoted Builds (Simple) Plugin 1.9 and earlier does not escape the name of custom promotion levels, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Overall/Administer permission.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:promoted_builds_(simple):*:*:*:*:*:jenkins:*:*

Information

Published : 2022-02-15 05:15

Updated : 2022-02-23 08:05


NVD link : CVE-2022-25202

Mitre link : CVE-2022-25202

Products Affected
No products.
CWE