org.jenkins-ci.plugins/naginator

Vulnerabilities (1)

• CVE-2022-45382Nov 15, 2022
  affected < 1.18.2fixed 1.18.2

  Jenkins Naginator Plugin 1.18.1 and earlier does not escape display names of source builds in builds that were triggered via Retry action, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to edit build display names.