Jenkins Subversion Plugin is vulnerable to information disclosure through authorization bypass. The vulnerability allows users without Overall/Read permission to submit search queries to retrieve a list of user names and node names.
CPE | Name | Operator | Version |
---|---|---|---|
hudson subversion plug-in | le | 2.3.11 |