4 matches found
CVE-2020-2207
Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting XSS vulnerability...
CVE-2020-2207
Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting XSS vulnerability...
CVE-2020-2207
Jenkins VncViewer Plugin (versions 1.7 and earlier) is affected by a reflected XSS in the checkVncServ endpoint due to insufficient escaping of a parameter value. This is documented across multiple sources (CVE-2020-2207). Impact is reflected client-side script execution; remediation is to upgrad...
CVE-2020-2207
Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting XSS vulnerability...