CVE-2019-1003066
CVE-2019-1003066 affects the Jenkins Bugzilla Plugin. The issue is that credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins master, specifically in hudson.plugins.bugzilla.BugzillaProjectProperty.xml, and can be viewed by any user with access to the master ...