Jenkins Tests Selector Plugin 1.3.3 and earlier does not escape the Properties File Path option for Choosing Tests parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jenkins
Published: 2022-03-29T12:31:25
Updated: 2024-08-03T05:48:37.379Z
Reserved: 2022-03-29T00:00:00
Link: CVE-2022-28159
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-29T13:15:10.550
Modified: 2023-11-03T02:31:38.663
Link: CVE-2022-28159
Redhat
No data.