3 matches found
CVE-2025-68556
Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HAPPY: from n/a through = 1.0.9...
PT-2022-15859 · Jenkins · Jenkins Conjur Secrets Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Conjur Secrets Plugin versions 1.0.9 and earlier Description: The issue allows attackers who can control agent processes to decrypt secrets stored in Jenkins, which were obtained through another method. This is possible due to the...
PT-2022-15860 · Jenkins · Jenkins Conjur Secrets Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Conjur Secrets Plugin versions 1.0.9 and earlier Description: The issue allows attackers who can control agent processes to retrieve all username/password credentials stored on the Jenkins controller. This is due to the implementation...