CVE-2022-41225 – Jenkins Anchore Container Image Scanner Plugin 1.0.24 and earlier does not escape content …

21 September 2022

Vuln ID: CVE-2022-41225

Published: 2022-09-21 16:15:09Z

Description: Jenkins Anchore Container Image Scanner Plugin 1.0.24 and earlier does not escape content provided by the Anchore engine API, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control API responses by Anchore engine.

Source: NVD.NIST.GOV

Date:

21 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Shouldn’t Teams, Zoom, Slack all interoperate securely for the Feds? Wyden is asking24 April 2024
The evolution from BEC to BCC24 April 2024
US indicts botnet operator24 April 2024
Dark web inundated by cheap ransomware tools24 April 2024
Ukrainian documents laced with old malware exposed24 April 2024