Lucene search

K
osvGoogleOSV:CVE-2020-2170
HistoryMar 25, 2020 - 5:15 p.m.

CVE-2020-2170

2020-03-2517:15:15
Google
osv.dev
6
jenkins
rapiddeploy
stored xss
vulnerability
remote server
package names

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

22.0%

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

22.0%