Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2020-2173
CVE-2020-2173
Jenkins Gatling Plugin 1.2.7 and earlier prevents Content-Security-Policy headers from being set for Gatling reports served by the plugin, resulting in an XSS vulnerability exploitable by users able to change report content.
Published Feb 3, 2026
https://jenkins.io/security/advisory/2020-04-07/#SECURITY-1633
CVSS Score
Medium
5.4
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
org.jenkins-ci.plugins/gatling
1.0.3
maven
org.jenkins-ci.plugins/gatling
1.1.0
maven
org.jenkins-ci.plugins/gatling
1.1.1
maven
org.jenkins-ci.plugins/gatling
1.1.2
maven
org.jenkins-ci.plugins/gatling
1.2.0
maven
org.jenkins-ci.plugins/gatling
1.2.1
maven
org.jenkins-ci.plugins/gatling
1.2.2
maven
org.jenkins-ci.plugins/gatling
1.2.3
maven
org.jenkins-ci.plugins/gatling
1.2.4
maven
org.jenkins-ci.plugins/gatling
1.2.5
maven
org.jenkins-ci.plugins/gatling
1.2.6
maven
org.jenkins-ci.plugins/gatling
1.2.7
1-12 of 12
CVE-2020-2173 | Components Impacted | Sonatype Guide | Sonatype Guide
