Share
## https://sploitus.com/exploit?id=CNVD-2022-49801
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. Jenkins vboxwrapper Plugin 1.3 and earlier versions are vulnerable to a cross-site scripting vulnerability that stems from the program not properly escaping the VBox node parameter names and descriptions in the view of the displayed parameters, which can be exploited by attackers to perform cross-site scripting attacks.