jenkins-2-plugins is vulnerable to Cross-Site Scripting (XSS). The vulnerability exists in extraAttributes
of POSTHyperlinkNote.java
because URLs of these hyperlinks in build logs are not properly encoded which allows an attacker to inject malicious scripts and create pipelines.