Mar 21, 2023 · XXE vulnerability in AbsInt a³ Plugin ... Description: AbsInt a³ Plugin 1.1.0 and earlier does not configure its XML parser to prevent XML ...
Dec 7, 2022 · This allows attackers able to control XML input files for the 'Plot build data' build step to have Jenkins parse a crafted file that uses ...
XMLUtils provides functionality to perform common XML operations safely. When using jackson-databind, make sure to depend on 2.10.x or newer, and only use ...
Jun 18, 2021 · This advisory announces vulnerabilities in the following Jenkins deliverables: Generic Webhook Trigger Plugin. Descriptions. XXE vulnerability ...
Missing: misc | Show results with:misc
Sep 6, 2023 · ... XML parser to prevent XML external entity (XXE) attacks. This allows attackers with Item/Configure permission to have Jenkins parse a crafted ...
Missing: misc | Show results with:misc
Mar 15, 2022 · xml files. These values are stored unencrypted and can be viewed by users with access to the Jenkins controller file system. Parameterized ...
Missing: misc | Show results with:misc
Apr 9, 2024 · This plugin analyzes the causes of failed builds and presents the causes on the build page. It does this by using a knowledge base of build ...
Missing: misc | Show results with:misc
May 25, 2021 · This allows attackers with Job/Configure permission or otherwise able to control the contents of an XML file being polled for changes to ...
Missing: misc | Show results with:misc
xml/etc. is creating—you edit the Jenkinsfile in your change. Your Pipeline script is always synchronized with the rest of the source code you are working ...
Nov 12, 2021 · This allows attackers with Overall/Read and Item/Read permissions to have Jenkins parse a crafted XML file that uses external entities for ...
Missing: misc | Show results with:misc