Vulnerabilities > Jenkins > Echarts API

DATE CVE VULNERABILITY TITLE RISK
2020-06-03 CVE-2020-2194 Cross-site Scripting vulnerability in Jenkins Echarts API
Jenkins ECharts API Plugin 4.7.0-3 and earlier does not escape the display name of the builds in the trend chart, resulting in a stored cross-site scripting vulnerability.
network
low complexity
jenkins CWE-79
5.4
2020-06-03 CVE-2020-2193 Cross-site Scripting vulnerability in Jenkins Echarts API
Jenkins ECharts API Plugin 4.7.0-3 and earlier does not escape the parser identifier when rendering charts, resulting in a stored cross-site scripting vulnerability.
network
low complexity
jenkins CWE-79
5.4