CVE-2020-2226
maven/org.jenkins-ci.plugins/matrix-auth
Cross-site Scripting
Jenkins Matrix Authorization Strategy Plugin does not escape user names shown in the configuration, resulting in a stored cross-site scripting vulnerability.
All versions up to 2.6.1
Upgrade to version 2.6.2 or above.
2020-07-28
source |