10 matches found
EUVD-2022-5319
Malicious code in bioql PyPI...
Credentials stored in plain text by Jenkins White Source Plugin
White Source Plugin prior to version 20.8.1 stores credentials in plain text as part of its global configuration file org.whitesource.jenkins.pipeline.WhiteSourcePipelineStep.xml and job config.xml files on the Jenkins controller. These credentials could be viewed by users with Extended Read...
GHSA-V8V2-FHGV-3VQ2 Credentials stored in plain text by Jenkins White Source Plugin
White Source Plugin prior to version 20.8.1 stores credentials in plain text as part of its global configuration file org.whitesource.jenkins.pipeline.WhiteSourcePipelineStep.xml and job config.xml files on the Jenkins controller. These credentials could be viewed by users with Extended Read...
CloudBees Jenkins ZAP Pipeline Plugin Cross-Site Scripting Vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . White Source Plugin is used in one of the...
Unspecified Vulnerability in CloudBees Jenkins White Source Plugin
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . White Source Plugin is used in one of the...
CVE-2020-2213
Jenkins White Source Plugin 19.1.1 and earlier stores credentials unencrypted in its global configuration file and in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission config.xml, or access to the master file system...
CVE-2020-2213
Jenkins White Source Plugin 19.1.1 and earlier stores credentials unencrypted in its global configuration file and in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission config.xml, or access to the master file system...
CVE-2020-2213
Jenkins White Source Plugin 19.1.1 and earlier stores credentials unencrypted in its global configuration file and in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission config.xml, or access to the master file system...
CVE-2020-2213
The CVE-2020-2213 case affects the Jenkins White Source Plugin: versions 19.1.1 and earlier store credentials in plain text in the global configuration file and in job config.xml on the Jenkins controller. This can expose credentials to users with Extended Read or to someone with access to the co...
CVE-2020-2213
Jenkins White Source Plugin 19.1.1 and earlier stores credentials unencrypted in its global configuration file and in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission config.xml, or access to the master file system...