Lucene search
MitreCVELIST:CVE-2018-1000012HistoryJan 23, 2018 - 2:00 p.m.
CVE-2018-1000012
2018-01-2314:00:00
mitre
www.cve.org
3
cve-2018-1000012
jenkins
warnings plugin
xml
entity
attack
user permissions
secrets
server-side request forgery
denial-of-service
Jenkins Warnings Plugin 4.64 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks.
References
Related
github
github
XXE vulnerability Jenkins Warnings Plugin
2022-05-14 03:45:49
nvd
nvd
CVE-2018-1000012
2018-01-23 14:29:00
cve
cve
CVE-2018-1000012
2018-01-23 14:29:00
osv
osv
CVE-2018-1000012
2018-01-23 14:29:00
XXE vulnerability Jenkins Warnings Plugin
2022-05-14 03:45:49
prion
prion
Server side request forgery (ssrf)
2018-01-23 14:29:00
alpinelinux
alpinelinux
CVE-2018-1000012
2018-01-23 14:29:00