CVE-2020-2113
CVE-2020-2113 affects Jenkins Git Parameter Plugin versions 0.9.11 and earlier. The UI shows the default value without escaping, enabling stored XSS exploitable by users with Job/Configure permission. Affected component is the Git Parameter Plugin’s UI input handling; root cause is lack of escapi...