Max CVSS 4.0 Min CVSS 3.5 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2020-2226 3.5
Jenkins Matrix Authorization Strategy Plugin 2.6.1 and earlier does not escape user names shown in the configuration, resulting in a stored cross-site scripting vulnerability.
22-07-2020 - 16:37 15-07-2020 - 18:15
CVE-2020-2224 3.5
Jenkins Matrix Project Plugin 1.16 and earlier does not escape the node names shown in tooltips on the overview page of builds with a single axis, resulting in a stored cross-site scripting vulnerability.
21-07-2020 - 16:29 15-07-2020 - 18:15
CVE-2020-2225 3.5
Jenkins Matrix Project Plugin 1.16 and earlier does not escape the axis names shown in tooltips on the overview page of builds with multiple axes, resulting in a stored cross-site scripting vulnerability.
21-07-2020 - 16:27 15-07-2020 - 18:15
CVE-2020-2190 3.5
Jenkins Script Security Plugin 1.72 and earlier does not correctly escape pending or approved classpath entries on the In-process Script Approval page, resulting in a stored cross-site scripting vulnerability.
03-06-2020 - 17:51 03-06-2020 - 13:15
CVE-2020-2181 4.0
Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets in the build log when the build contains no build steps.
11-05-2020 - 20:44 06-05-2020 - 13:15
CVE-2020-2182 4.0
Jenkins Credentials Binding Plugin 1.22 and earlier does not mask (i.e., replace with asterisks) secrets containing a `$` character in some circumstances.
11-05-2020 - 20:36 06-05-2020 - 13:15
Back to Top Mark selected
Back to Top