5 matches found
EUVD-2022-2476
Malicious code in bioql PyPI...
GHSA-5293-3FGP-CR3X Missing permission checks in Jenkins Periodic Backup Plugin allow every user to change settings
The Periodic Backup Plugin did not perform any permission checks, allowing any user with Overall/Read access to change its settings, trigger backups, restore backups, download backups, and also delete all previous backups via log rotation. Additionally, the plugin was not requiring requests to it...
CVE-2017-1000086
The Periodic Backup Plugin did not perform any permission checks, allowing any user with Overall/Read access to change its settings, trigger backups, restore backups, download backups, and also delete all previous backups via log rotation. Additionally, the plugin was not requiring requests to it...
CVE-2017-1000086
Summary: Multiple sources report a vulnerability in the Jenkins Periodic Backup Plugin (CVE-2017-1000086) involving missing permission checks and CSRF exposure. Affected component: Jenkins Periodic Backup Plugin (version 1.4 and earlier, per CNVD/CVE references). Root cause (as stated): The plugi...
CloudBees Jenkins Periodic Backup Plugin Security Bypass Vulnerability
CloudBees Jenkins is a set of U.S. CloudBees continuous integration tools based on Java development , it is mainly used to monitor the continuous software version of the release/testing project and some of the timed execution of the task . Periodic Backup Plugin is one of the file regular backup...