EPSS
Percentile
22.0%
jenkins-script-security-plugin is vulnerable to cross-site scripting (XSS). The vulnerability exists it does not correctly escape pending or approved classpath entries on the In-process Script Approval page.
www.openwall.com/lists/oss-security/2020/06/03/3
access.redhat.com/errata/RHSA-2020:3207
access.redhat.com/security/updates/classification/#moderate
jenkins.io/security/advisory/2020-06-03/#SECURITY-1866