CVE-2020-2314
The CVE-2020-2314 issue affects Jenkins AppSpider Plugin 1.0.12 and earlier, where the plugin stores a password unencrypted in the global configuration file on the Jenkins controller. The password is stored in com.rapid7.jenkinspider.PostBuildScan.xml and can be viewed by users with filesystem ac...