CVE-2022-23110
12.01.2022, 20:15
Jenkins Publish Over SSH Plugin 1.22 and earlier does not escape the SSH server name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Overall/Administer permission.
Vendor | Product | Version |
---|---|---|
jenkins | publish_over_ssh | 𝑥 ≤ 1.22 |
𝑥
= Vulnerable software versions