CVE-2020-2136 is a vulnerability in Jenkins Git
Published on March 9, 2020
Jenkins Git Plugin 4.2.0 and earlier does not escape the error message for the repository URL for Microsoft TFS field form validation, resulting in a stored cross-site scripting vulnerability.
Products Associated with CVE-2020-2136
Want to know whenever a new CVE is published for Jenkins Git? stack.watch will email you.
Affected Versions
Jenkins project Jenkins Git Plugin:- Version unspecified, <= 4.2.0 is affected.
Exploit Probability
EPSS
0.13%
Percentile
32.10%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.