Description
Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
Remediation
References
Related Vulnerabilities
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.9.63)
WordPress Plugin OneLogin SAML SSO Unspecified Vulnerability (2.1.8)
WordPress Plugin Themify Builder Cross-Site Scripting (5.3.1)
WordPress Plugin Simple Job Board Cross-Site Scripting (2.4.3)
Grafana Improper Authentication Vulnerability (CVE-2022-32276)