8 matches found
EUVD-2022-5196
Malicious code in bioql PyPI...
Jenkins Plugin Folders 日志信息泄露漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
SUSE CVE-2017-1000110
Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. It did not properly check the current user's authentication and authorization when...
GHSA-RM5M-9MX4-G5R7 Improper Authentication in Jenkins Blue Ocean Plugin
Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. It did not properly check the current user's authentication and authorization when...
CVE-2017-1000106
Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. Its SCM content REST API supports the pipeline creation and editing feature in Blue...
CVE-2017-1000106
Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. Its SCM content REST API supports the pipeline creation and editing feature in Blue...
CVE-2017-1000110
CVE-2017-1000110 concerns the Jenkins Blue Ocean plugin. Connected documents confirm that Blue Ocean allowed creation of GitHub organization folders that scan for repositories/branches with a Jenkinsfile and create pipelines, but did not properly verify the current user’s authentication/authoriza...
CVE-2017-1000106
This CVE (CVE-2017-1000106) affects Jenkins Blue Ocean integration for GitHub organization folders. The root cause is that the SCM content REST API did not verify the current user’s authentication/credentials when creating or editing pipelines for repositories within a GitHub organization folder....