| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-2163 | 3.5 |
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.
|
02-11-2023 - 21:11 | 25-03-2020 - 17:15 | |
| CVE-2020-2162 | 3.5 |
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.
|
02-11-2023 - 21:11 | 25-03-2020 - 17:15 | |
| CVE-2020-2161 | 3.5 |
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to defin
|
02-11-2023 - 21:11 | 25-03-2020 - 17:15 | |
| CVE-2020-2160 | 6.8 |
Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.
|
25-10-2023 - 18:16 | 25-03-2020 - 17:15 |