CVE-2022-41230 in Build-Publisher Plugin信息

摘要

由 VulDB • 2026-07-11

Jenkins Build-Publisher Plugin 1.22及更早版本未在HTTP端点执行权限检查,导致拥有Overall/Read权限的攻击者能够获取该插件配置用于发布构建的Jenkins服务器的名称和URL,以及待发布到这些Jenkins服务器的构建信息。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Want to know what is going to be exploited?

We predict KEV entries!