Vulnerabilities > Jenkins > Vncviewer

DATE CVE VULNERABILITY TITLE RISK
2020-07-02 CVE-2020-2207 Cross-site Scripting vulnerability in Jenkins Vncviewer
Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
network
low complexity
jenkins CWE-79
6.1