Identifier

CVE-2020-2246

Package Slug

maven/org.jenkins-ci.plugins/valgrind

Vulnerability

Cross-site Scripting

Description

The Jenkins Valgrind Plugin does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control Valgrind XML report contents.

Affected Versions

All versions up to 0.28

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-09-07

source