Jenkins SiteMonitor Plugin 0.6 and... CVE-2022-28153

- AV AC AU C I A
发布: 2022-04-29
修订: 2022-04-29

Jenkins SiteMonitor Plugin 0.6 and earlier does not escape URLs of sites to monitor in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息