Security Advisory

CVE-2020-2217

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-02 14:55:39

Last updated 2024-08-04 07:01:41

Assigner jenkins

State PUBLISHED

Description

Jenkins Compatibility Action Storage Plugin 1.0 and earlier does not escape the content coming from the MongoDB in the testConnection form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.

← Browse all CVEs View on cve.org ↗