CVE-2020-2210
The CVE-2020-2210 entry concerns Jenkins Stash Branch Parameter Plugin versions 0.3.0 and earlier, where configured passwords are transmitted in plain text as part of the global Jenkins configuration form. Root cause: the plugin stores the Stash API password in the controller’s config file, and a...