CVE-2020-2264 – Jenkins Custom Job Icon Plugin 0.2 and earlier does not escape the job descriptions in too …

16 September 2020

Vuln ID: CVE-2020-2264

Published: 2020-09-16 14:15:13Z

Description: Jenkins Custom Job Icon Plugin 0.2 and earlier does not escape the job descriptions in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.

Source: NVD.NIST.GOV

Date:

16 September 2020

Categorie(s):

NVD

Tag(s):

NVD

Applying DevSecOps principles to machine learning workloads25 April 2024
Overcoming GenAI challenges in healthcare cybersecurity25 April 2024
25 cybersecurity AI stats you should know25 April 2024
73% of SME security pros missed or ignored critical alerts25 April 2024
Battening down the hatches: Navigating third-party cyber threats 25 April 2024