Jenkins Matrix Project Plugin is vulnerable to Path Traversal. The vulnerability is caused due to improper sanitization of user-defined axis names in multi-configuration projects. This could allow an attacker to manipulate or replace the config.xml
files with arbitrary content, resulting in Path Traversal.
CPE | Name | Operator | Version |
---|---|---|---|
matrix project plugin | le | 818.v7eb_e657db_924 | |
matrix project plugin | le | 818.v7eb_e657db_924 |