4 matches found
CVE-2019-1003067
Jenkins Trac Publisher Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003067
CVE-2019-1003067 describes a credential exposure in the Jenkins Trac Publisher Plugin where credentials are stored in plaintext in job config.xml on the Jenkins master/controller. The root cause is unencrypted credential storage in the plugin’s configuration files, making credentials viewable by ...
CVE-2019-1003067
Jenkins Trac Publisher Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-1003067
Jenkins Trac Publisher Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...