CVE-2022-25202 in Promoted Builds Plugin
Sumário
de MITRE • 15/02/2022
Jenkins Promoted Builds (Simple) Plugin 1.9 and earlier does not escape the name of custom promotion levels, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Overall/Administer permission.
VulDB is the best source for vulnerability data and more expert information about this specific topic.