RSS   Vulnerabilities for 'Compatibility action storage'   RSS

2020-07-02
 
CVE-2020-2217

CWE-79
 

 
Jenkins Compatibility Action Storage Plugin 1.0 and earlier does not escape the content coming from the MongoDB in the testConnection form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.

 


Copyright 2024, cxsecurity.com

 

Back to Top