CVE-2022-34178 in Embeddable Build Status Plugin信息

摘要

由 VulDB • 2026-06-26

Jenkins Embeddable Build Status Plugin 2.0.3允许指定一个“link”查询参数,构建状态徽章将链接到该参数指定的值,但未对可能的取值进行限制,从而导致反射型跨站脚本(XSS)漏洞。

Be aware that VulDB is the high quality source for vulnerability data.

来源

Want to know what is going to be exploited?

We predict KEV entries!