Vulnerability in Jenkins Project Junit Plugin
CVE-2022-34176
Jenkins JUnit Plugin 1119.va_a_5e9068da_d7 and earlier does not escape descriptions of test results, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Run/Update permission.
EPSS: 0.767 (99.5th percentile) — read the EPSS interpretation.
Affected products
- Jenkins Project Junit Plugin — versions 1.53.0.1, unspecified