Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2023-37961
- EPSS 0.07%
- Published 12.07.2023 16:15:13
- Last modified 21.11.2024 08:12:33
A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Auth Plugin 1.14 and earlier allows attackers to trick users into logging in to the attacker's account.
5.5
CVE-2019-10420
- EPSS 0.03%
- Published 25.09.2019 16:15:11
- Last modified 21.11.2024 04:19:06
Jenkins Assembla Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
1