Jenkins GitHub Plugin 漏洞列表
共找到 1 个与 Jenkins GitHub Plugin 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2018-1000600: Jenkins GitHub Plugin <=1.29.1 - Server-Side Request Forgery POC
Jenkins GitHub Plugin 1.29.1 and earlier is susceptible to server-side request forgery via GitHubTokenCredentialsCreator.java, which allows attackers to leverage attacker-specified credentials IDs obtained through another method and capture the credentials stored in Jenkins.