CVE-2020-2227

Cross-site Scripting in maven/org.jenkins-ci.plugins/deployer-framework

Identifiers

CVE-2020-2227

Package Slug

maven/org.jenkins-ci.plugins/deployer-framework

Vulnerability

Cross-site Scripting

Description

Jenkins Deployer Framework Plugin does not escape the URL displayed in the build home page, resulting in a stored cross-site scripting vulnerability.

Affected Versions

All versions up to 1.2

Solution

Upgrade to version 1.3 or above.

Last Modified

2020-07-27

source