RSS   Vulnerabilities for 'Jenkins plugin'   RSS

2013-12-13
 
CVE-2013-5676

CWE-310
 

 
The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from jenkins/configure.

 

 >>> Vendor: Sonarsource 3 Products
Jenkins plugin
Sonarqube
Sonarqube scanner


Copyright 2019, cxsecurity.com

 

Back to Top