Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:40 a.m.9 views

CVE-2019-1003055

Jenkins FTP publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS6.7AI score0.01365EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.4 views

CloudBees Jenkins FTP publisher Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . FTP publisher Plugin is used in one of...

8.8CVSS6.9AI score0.01365EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/11 12:0 a.m.3 views

CloudBees Jenkins FTP publisher Plugin Cross-Site Request Forgery Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . FTP publisher Plugin is used in one of...

6.5CVSS6.8AI score0.01296EPSS
Exploits0References1
CVE
CVE
added 2019/04/04 3:38 p.m.64 views

CVE-2019-1003059

The CVE-2019-1003059 entry concerns Jenkins FTP Publisher Plugin. The vulnerability is a missing permission check in FTPPublisher.DescriptorImpl#doLoginCheck, which allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server. Affected component is the Je...

6.5CVSS6.2AI score0.01486EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/04/04 3:38 p.m.69 views

CVE-2019-1003058

CVE-2019-1003058 describes a Cross-Site Request Forgery vulnerability in the Jenkins FTP Publisher Plugin, specifically in FTPPublisher.DescriptorImpl#doLoginCheck. The flaw allows an attacker to induce the Jenkins server to initiate a connection to an attacker-specified server. The linked connec...

6.5CVSS6.3AI score0.01296EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder