CVE-2018-1000412
The Jenkins Jira Plugin vulnerability (CVE-2018-1000412) affects version 3.0.1 and earlier, where JiraSite.java allows an attacker with Overall/Read access to have Jenkins connect to an attacker-specified URL using attacker-specified credentials IDs, enabling capture of credentials stored in Jenk...