2 matches found
SUSE CVE-2017-1000387
Jenkins Build-Publisher plugin version 1.21 and earlier stores credentials to other Jenkins instances in the file hudson.plugins.buildpublisher.BuildPublisher.xml in the Jenkins master home directory. These credentials were stored unencrypted, allowing anyone with local file system access to acce...
Elding Directory Traversal Vulnerability
elding is a web server. A directory traversal vulnerability exists in elding. An attacker can exploit this vulnerability by placing a '... /' sequence in a URL to gain access to the file system however, the accessible files are limited to those with file extensions. For example, sending a GET...