Jenkins Multiple Input Validation Security Vulnerabilities

Bugtraq ID: 106774
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Jan 28 2019 12:00AM
Updated: Jan 28 2019 12:00AM
Credit: Adam Willard, Chris Jacobs, Comscore, Inc., Systems Engineer, Daniel Beck, CloudBees, Inc., James Nord, Kalle Niemitalo, Procomp Solutions Oy, Man Shum ( https://www.instagram.com/evmannn/ ) from Hong Kong, Mikhail Egorov, security researcher, https://twit
Vulnerable: Jenkins Warnings Next Generation 2.1.1
Jenkins Warnings Next Generation 1.0.1
Jenkins Warnings Next Generation 2.1
Jenkins Warnings 5.0
Jenkins Token Macro 2.5
Jenkins Script Security 1.9
Jenkins Script Security 1.8
Jenkins Script Security 1.7
Jenkins Script Security 1.6
Jenkins Script Security 1.50
Jenkins Script Security 1.5
Jenkins Script Security 1.49
Jenkins Script Security 1.48
Jenkins Script Security 1.47
Jenkins Script Security 1.46
Jenkins Script Security 1.45
Jenkins Script Security 1.44
Jenkins Script Security 1.43
Jenkins Script Security 1.42
Jenkins Script Security 1.41
Jenkins Script Security 1.40
Jenkins Script Security 1.4
Jenkins Script Security 1.39
Jenkins Script Security 1.38
Jenkins Script Security 1.31
Jenkins Script Security 1.30
Jenkins Script Security 1.3
Jenkins Script Security 1.29
Jenkins Script Security 1.28
Jenkins Script Security 1.27
Jenkins Script Security 1.26
Jenkins Script Security 1.25
Jenkins Script Security 1.24
Jenkins Script Security 1.23
Jenkins Script Security 1.22
Jenkins Script Security 1.21
Jenkins Script Security 1.20
Jenkins Script Security 1.2
Jenkins Script Security 1.19
Jenkins Script Security 1.18
Jenkins Script Security 1.17
Jenkins Script Security 1.16
Jenkins Script Security 1.15
Jenkins Script Security 1.14
Jenkins Script Security 1.13
Jenkins Script Security 1.12
Jenkins Script Security 1.11
Jenkins Script Security 1.10
Jenkins Script Security 1.1
Jenkins Script Security 1.0
Jenkins OpenId 1.4
Jenkins Monitoring Plugin 1.74
Jenkins Kanboard 1.5.10
Jenkins Job Import 3.0
Jenkins Job Import 2.1
Jenkins Groovy 2.0
Jenkins GitHub Authentication 0.29
Jenkins Git 3.9.1
Jenkins Config File Provider 3.4.1
Jenkins Config File Provider 2.16.2
Jenkins Config File Provider 2.16.1
Jenkins Config File Provider 2.16
Jenkins Config File Provider 2.15
Jenkins Config File Provider 2.13
Jenkins Config File Provider 2.11
Jenkins Config File Provider 2.10
Jenkins Config File Provider 2.0
Jenkins Config File Provider 1.0
Jenkins Blue Ocean 1.10.1
Jenkins Blue Ocean 1.1.6
Jenkins Blue Ocean 1.1.5
Jenkins Blue Ocean 1.1.4
Jenkins Blue Ocean 1.1.2
Jenkins Blue Ocean 1.1.1
Jenkins Blue Ocean 1.1
Jenkins Active Directory 2.9
Jenkins Active Directory 2.10
Not Vulnerable: Jenkins Warnings Next Generation 2.1.2
Jenkins Warnings 5.0.1
Jenkins Token Macro 2.6
Jenkins Script Security 1.51
Jenkins OpenId 1.5
Jenkins Monitoring Plugin 1.75
Jenkins Kanboard 1.5.11
Jenkins Job Import 3.1
Jenkins Groovy 2.1
Jenkins GitHub Authentication 0.31
Jenkins Git 3.9.2
Jenkins Config File Provider 3.5
Jenkins Blue Ocean 1.10.2
Jenkins Active Directory 2.11


 

Privacy Statement
Copyright 2010, SecurityFocus