3 matches found
CVE-2025-64147
creationtimestamp| type| source ---|---|--- 2025-10-29 13:51:56+00:00| seen| Telegram/nk-ow7qlv--lyz7ZGV6yD6qQvKmfQv5LIQNOk5hzpz68r3w...
CVE-2025-64147
CVE-2025-64147 affects the Jenkins Curseforge Publisher Plugin (version 1.0). The vulnerability is that API Keys are displayed unmasked on the job configuration form and stored unencrypted in config files, enabling users with sufficient permissions to observe/capture credentials. Public documents...
CVE-2025-64147
Jenkins Curseforge Publisher Plugin 1.0 does not mask API Keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...