CVE-2020-2206
02.07.2020, 15:15
Jenkins VncRecorder Plugin 1.25 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
Vendor | Product | Version |
---|---|---|
jenkins | vncrecorder | 𝑥 ≤ 1.25 |
𝑥
= Vulnerable software versions