Produkt Audit trail (...) - CVEMAP.ORG

Podatności dla 'Audit trail'

2020-10-08

CVE-2020-2288

CWE-185

In Jenkins Audit Trail Plugin 3.6 and earlier, the default regular expression pattern could be bypassed in many cases by adding a suffix to the URL that would be ignored during request handling.

CVE-2020-2287

CWE-435

Jenkins Audit Trail Plugin 3.6 and earlier applies pattern matching to a different representation of request URL paths than the Stapler web framework uses for dispatching requests, which allows attackers to craft URLs that bypass request logging of any target URL.

2020-03-09

CVE-2020-2140

CWE-79

Jenkins Audit Trail Plugin 3.2 and earlier does not escape the error message for the URL Patterns field form validation, resulting in a reflected cross-site scripting vulnerability.

>>> Vendor: Jenkins 480 Produkty

Active directory

Pluggable authentication module

Build failure analyzer

Vrealize orchestrator

Openstack cloud

Image gallery plugin

Extra columns plugin

Script security

Github branch source

Config file provider

Owasp dependency-check

Pipeline-input-step

Deploy to container

Static analysis utilities

Periodic backup

Role-based authorization strategy

Parameterized trigger

Favorite plugin

Translation assistance

Pipeline nodes and processes

Delivery pipeline

Build-publisher

Dependency graph viewer

Global-build-stats

Credentials binding

Pipeline supporting apis

Google-play-android-publisher

Promoted builds

Job and node ownership

Cucumber living documentation

Github pull request builder

Reverse proxy auth

Liquibase runner

Zobacz wszystkie produkty dla producenta Jenkins

Copyright 2024, cxsecurity.com