VYPR

Associated Files Plugin

by Jenkins Project

CVEs (1)

  • CVE-2022-45401MedNov 15, 2022
    risk 0.35cvss 5.4epss 0.01

    Jenkins Associated Files Plugin 0.2.1 and earlier does not escape names of associated files, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.