Lucene search
Jenkins Mask Passwords Plugin Security Vulnerabilities
cve
Jenkins Mask Passwords Plugin 3.0 and earlier does not escape the name and description of Non-Stored Password parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure...
5.4CVSS
5.3AI Score
0.001EPSS
2022-04-12 08:15 PM
69
cve
Jenkins Project Inheritance Plugin 2.0.0 and earlier displayed a list of environment variables passed to a build without masking sensitive variables contributed by the Mask Passwords...
6.5CVSS
6.3AI Score
0.001EPSS
2019-09-25 04:15 PM
21
cve
Jenkins Mask Passwords Plugin 2.12.0 and earlier transmits globally configured passwords in plain text as part of the configuration form, potentially resulting in their...
6.5CVSS
6.4AI Score
0.002EPSS
2019-08-07 03:15 PM
32