CVE-2020-2240

Published: Sep 1, 2020
Updated: Oct 26, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2020-2240" target="_blank" rel="noopener"> CVE-2020-2240
GHSA: <a href="https://github.com/advisories/GHSA-jf9j-hx2j-m9xh" target="_blank" rel="noopener"> GHSA-jf9j-hx2j-m9xh
Severity: High
Exploit:

A cross-site request forgery (CSRF) vulnerability in Jenkins database Plugin 1.6 and earlier allows attackers to execute arbitrary SQL scripts.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
jenkins / database	-	1.6.x
org.jenkins-ci.plugins / database	-	1.7

Vulnerability Database