org.jenkins-ci.plugins:build-pipeline-plugin (>=1.3.4.1 <=1.5.8), org.jenkins-ci.plugins:buildgraph-view (>=1.3.1 <=1.8) +8 more potentially affected by CVE-2017-1000084 via org.jenkins-ci.plugins:parameterized-trigger (>=2.12 <=2.33)

org.jenkins-ci.plugins:parameterized-trigger MAVEN version =2.12, =1.3.4.1, =1.3.1, =1.0, =1.9, =1.02, =1.0, =0.8.0, =0.16, =1.1, =0.6.6, =1.1.1 Source cves: CVE-2017-1000084 Source advisory: OSV:GHSA-MC22-25R3-2W9W...

rdx-hd.me XSS vulnerability

Open Bug Bounty ID: OBB-554674 Description| Value ---|--- Affected Website:| rdx-hd.me Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-1000084

CVE-2017-1000084 concerns the Jenkins Parameterized Trigger Plugin, where the component failed to enforce Item/Build permissions during downstream triggering. The underlying issue allowed a build to trigger other projects without proper authorization, potentially enabling unauthorized project lau...