GHSA-j923-26c2-qq9p, CVE-2022-45387
maven/org.jenkins-ci.plugins/bart
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Jenkins BART Plugin 1.0.3 and earlier does not escape the parsed content of build logs before rendering it on the Jenkins UI, resulting in a stored cross-site scripting (XSS) vulnerability.
Version 1.0.3
Unfortunately, there is no solution available yet.
2022-11-22
source |