3 matches found
EUVD-2020-2289
Malware in sbrugna...
CVE-2020-2289
Jenkins Active Choices Plugin 2.4 and earlier does not escape the name and description of build parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Job/Configure permission...
CVE-2020-2289
CVE-2020-2289 affects Jenkins with the Active Choices Plugin (versions 2.4 and earlier). The root cause is that the name and description of build parameters are not escaped, leading to a stored cross-site scripting (XSS) vulnerability. The impact is that an attacker with Job/Configure permission ...