Jenkins: >> Naginator Security Vulnerabilities
Jenkins Naginator Plugin 1.18.1 and earlier does not escape display names of source builds in builds that were triggered via Retry action, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to edit build display names.
CVSS Score
5.4
EPSS Score
0.01
Published
2022-11-15