Max CVSS 3.5 Min CVSS 3.5 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2020-2220 3.5
Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the agent name in the build time trend page, resulting in a stored cross-site scripting vulnerability.
25-10-2023 - 18:16 15-07-2020 - 18:15
CVE-2020-2222 3.5
Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the job name in the 'Keep this build forever' badge tooltip, resulting in a stored cross-site scripting vulnerability.
25-10-2023 - 18:16 15-07-2020 - 18:15
CVE-2020-2223 3.5
Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape correctly the 'href' attribute of links to downstream jobs displayed in the build console page, resulting in a stored cross-site scripting vulnerability.
25-10-2023 - 18:16 15-07-2020 - 18:15
CVE-2020-2221 3.5
Jenkins 2.244 and earlier, LTS 2.235.1 and earlier does not escape the upstream job's display name shown as part of a build cause, resulting in a stored cross-site scripting vulnerability.
25-10-2023 - 18:16 15-07-2020 - 18:15
Back to Top Mark selected
Back to Top