CVE-2020-2244

CVE-2020-2244

Jenkins Build Failure Analyzer Plugin 1.27.0 and earlier does not escape matching text in a form validation response, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers able to provide console output for builds used to test build log indications.

Source: CVE-2020-2244

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다