CVE-2022-41239 in DotCi Plugininformação

Sumário

de MITRE • 21/09/2022

Jenkins DotCi Plugin 2.40.00 and earlier does not escape the GitHub user name parameter provided to commit notifications when displaying them in a build cause, resulting in a stored cross-site scripting (XSS) vulnerability.

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

21/09/2022

Divulgação

21/09/2022

Moderação

aceite

Entrada

VDB-209288

CPE

pronto

EPSS

0.00587

KEV

não

Atividades

muito baixo

Fontes

Do you know our Splunk app?

Download it now for free!