Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2020-2096
- EPSS 93.56%
- Published 15.01.2020 16:15:14
- Last modified 21.11.2024 05:24:36
Jenkins Gitlab Hook Plugin 1.4.2 and earlier does not escape project names in the build_now endpoint, resulting in a reflected XSS vulnerability.
6.5
CVE-2018-1000196
- EPSS 0.1%
- Published 05.06.2018 21:29:00
- Last modified 21.11.2024 03:39:54
A exposure of sensitive information vulnerability exists in Jenkins Gitlab Hook Plugin 1.4.2 and older in gitlab_notifier.rb, views/gitlab_notifier/global.erb that allows attackers with local Jenkins master file system access or control of a Jenkins ...
1