2 matches found
CVE-2020-2288
In Jenkins Audit Trail Plugin 3.6 and earlier, the default regular expression pattern could be bypassed in many cases by adding a suffix to the URL that would be ignored during request handling...
CVE-2020-2288
Jenkins Audit Trail Plugin (versions ≤ 3.6) contains a flaw where the default regular expression used to match URLs can be bypassed by appending arbitrary suffixes to requests, causing those requests to be ignored during handling. The issue is addressed in 3.7 and later; upgrading to 3.7+ is reco...