2 matches found
CVE-2020-2269
Jenkins chosen-views-tabbar Plugin 1.2 and earlier does not escape view names in the dropdown to select views, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with the ability to configure views...
CVE-2020-2269
CVE-2020-2269 affects Jenkins chosen-views-tabbar Plugin (versions 1.2 and earlier). The vulnerability is a stored XSS caused by lack of escaping view names in the dropdown used to select views, enabling an attacker who can configure views to inject script. Public advisories (GHSA, NVD, OSV, CNVD...