CVE-2022-25203

Summary

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Overall/Read permission.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Team Views Pluginunspecified <= 0.9.0affected
Jenkins projectJenkins Team Views Pluginnext of 0.9.0 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References