Skip to main content

Jenkins Plugin

1 CVEs product

Monthly

CVE-2013-5676 Maven MEDIUM POC This Month

The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Jenkins Jenkins Plugin
NVD Exploit-DB
CVSS 2.0
4.0
EPSS
5.3%
EPSS 5% CVSS 4.0
MEDIUM POC This Month

The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Jenkins Jenkins Plugin
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy