Description REST API endpoints in Jenkins 2.218 and earlier, LTS 2.204.1 and earlier were vulnerable to clickjacking attacks. Remediation References CVE-2020-2105 Related Vulnerabilities ownCloud Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2015-7698) WordPress Plugin Advanced Custom Fields (ACF) Arbitrary File Upload (5.12.2) WebLogic CVE-2018-1257 Vulnerability (CVE-2018-1257) WordPress Plugin Custom Metas Cross-Site Scripting (1.5.1) WordPress Plugin Zero Spam SQL Injection (2.1.2) Severity Medium Classification CVE-2020-2105 CWE-1021 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities