CVE-2020-2169

Summary

A form validation endpoint in Jenkins Queue cleanup Plugin 1.3 and earlier does not properly escape a query parameter displayed in an error message, resulting in a reflected XSS vulnerability.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Queue cleanup Pluginunspecified <= 1.3affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References