Jenkins

Locked Files Report

1 vulnerability found

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2020-2271

  • EPSS 0.23%
  • Published 16.09.2020 14:15:14
  • Last modified 21.11.2024 05:25:09

Jenkins Locked Files Report Plugin 1.6 and earlier does not escape locked files' names in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.