3 matches found
GHSA-8PQX-3RXX-F5PM Jenkins discloses project names via fingerprints
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request...
CVE-2015-5317
The Fingerprints pages in Jenkins before 1.638 and LTS before 1.625.2 might allow remote attackers to obtain sensitive job and build name information via a direct request...
PT-2015-6850 · Cloudbees +1 · Jenkins
Name of the Vulnerable Software and Affected Versions: Jenkins versions prior to 1.638 Jenkins LTS versions prior to 1.625.2 Description: The issue allows remote attackers to obtain sensitive job and build name information via a direct request to the Fingerprints pages. This is an information...