Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jenkins Parameterized Trigger Plugin 2.43 and earlier captures environment variables passed to builds triggered using Jenkins Parameterized Trigger Plugin, including password parameter values, in their `build.xml` files. These values are stored unencrypted and can be viewed by users with access to the Jenkins controller file system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jenkins Plugin Parameterized Trigger 安全漏洞
Vulnerability Description
Jenkins和Jenkins Plugin都是Jenkins开源的产品。Jenkins是一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建,部署和自动化任何项目。Jenkins Plugin是一个应用软件。 Jenkins Plugin Parameterized Trigger 2.43 及更早版存在安全漏洞,该漏洞源于使用 Jenkins Parameterized Trigger Plugin 触发构建的环境变量(包括密码参数值),这些值未加密存储,有权访问 Jenkins
CVSS Information
N/A
Vulnerability Type
N/A