10 matches found
EUVD-2022-4407
Malicious code in bioql PyPI...
CVE-2019-10423
Jenkins CodeScan Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
Jenkins CodeScan Plugin has Insufficiently Protected Credentials
CodeScan Plugin stores an API key unencrypted in its global configuration file com.villagechief.codescan.jenkins.CodeScanBuilder.xml on the Jenkins controller. This API key can be viewed by users with access to the Jenkins controller file system. As of publication of this advisory, there is no fi...
GHSA-JP8R-JH5J-CGWF Jenkins CodeScan Plugin has Insufficiently Protected Credentials
CodeScan Plugin stores an API key unencrypted in its global configuration file com.villagechief.codescan.jenkins.CodeScanBuilder.xml on the Jenkins controller. This API key can be viewed by users with access to the Jenkins controller file system. As of publication of this advisory, there is no fi...
CloudBees Jenkins CodeScan Plugin has an Unspecified Vulnerability Vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . CodeScan Plugin is used in one of the plug-i...
CVE-2019-10423
Jenkins CodeScan Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
Design/Logic Flaw
Jenkins CodeScan Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10423
CVE-2019-10423 affects the Jenkins CodeScan Plugin, which stores credentials unencrypted in the plugin’s global configuration file on the Jenkins master/controller. The root cause is unencrypted storage of sensitive data (including credentials and an API key) in com.villagechief.codescan.jenkins....
CVE-2019-10423
Jenkins CodeScan Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
PT-2019-11817 · Jenkins · Jenkins Codescan Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins CodeScan Plugin affected versions not specified Description: The issue concerns the storage of sensitive information in an unencrypted manner. Specifically, the Jenkins CodeScan Plugin stores credentials and an API key unencrypted in...