Jenkins - Custom Job Icon CVE - CVE Search - CVE Details

Filtered by vendor Jenkins Subscribe

Filtered by product Custom Job Icon

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-2264	1 Jenkins	1 Custom Job Icon	2020-09-16	3.5 LOW	5.4 MEDIUM
Jenkins Custom Job Icon Plugin 0.2 and earlier does not escape the job descriptions in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.

Vulnerabilities (CVE)