16 matches found
EUVD-2025-20849
Malicious code in bioql PyPI...
EUVD-2025-20850
Malicious code in bioql PyPI...
CVE-2025-53664
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...
CVE-2025-53665
Jenkins Apica Loadtest Plugin 1.10 and earlier does not mask Apica Loadtest LTP authentication tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them...
The vulnerability of the Apica Loadtest plugin for Jenkins’ automation server lies in the fact that registration data is stored in an open manner, allowing a malicious actor to gain unauthorized access to the protected information.
The vulnerability of the Apica Loadtest plugin for Jenkins-based automation servers lies in the way registration data is stored in an open manner within the config.xml file. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller fil...
GHSA-Q8P4-VW42-66GH Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller fil...
GHSA-28J3-HPHH-CJR8 Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller fil...
Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These tokens can be viewed by users with Item/Extended Read permission or access to the Jenkins controller fil...
CVE-2025-53664
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...
CVE-2025-53665
Jenkins Apica Loadtest Plugin 1.10 and earlier does not mask Apica Loadtest LTP authentication tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them...
CVE-2025-53665
Jenkins Apica Loadtest Plugin 1.10 and earlier does not mask Apica Loadtest LTP authentication tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them...
CVE-2025-53664
Jenkins Apica Loadtest Plugin 1.10 and earlier stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...
Jenkins plugin Apica Loadtest 安全漏洞
Jenkins and Jenkins plugin are both Jenkins open source products.Jenkins is an application software. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins plugin is an application software plugin. A security...
PT-2025-28916 · WordPress +1 · Jenkins Apica Loadtest Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Apica Loadtest Plugin versions 1.10 and earlier Description: The Jenkins Apica Loadtest Plugin stores Apica Loadtest LTP authentication tokens unencrypted in job config.xml files on the Jenkins controller. These tokens are accessible ...
PT-2025-28917 · WordPress +1 · Jenkins Apica Loadtest Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Apica Loadtest Plugin versions 1.10 and earlier Description: The Jenkins Apica Loadtest Plugin does not mask Apica Loadtest LTP authentication tokens displayed on the job configuration form, potentially allowing attackers to observe a...