Security Advisory

CVE-2020-2137

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-09 15:00:57

Last updated 2024-08-04 07:01:40

Assigner jenkins

State PUBLISHED

Description

Jenkins Timestamper Plugin 1.11.1 and earlier does not sanitize HTML formatting of its output, resulting in a stored XSS vulnerability exploitable by attackers with Overall/Administer permission.

← Browse all CVEs View on cve.org ↗