Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
Jenkins project

jenkins_mailer

6 Versions 3 CVEs

Versions

1.32

MAJOR_MINOR 1 CVE

391.ve4a_38c1b_cf4b_

OTHER 2 CVEs

1.34.2

SEMANTIC 2 CVEs

unspecified

OTHER 3 CVEs

1.29.1

SEMANTIC 1 CVE

1.31.1

SEMANTIC 1 CVE

Recent CVEs

CVE-2022-20613

A cross-site request forgery (CSRF) vulnerability in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier allows attackers to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname.

UNKNOWN Jan 12, 2022

CVE-2022-20614

A missing permission check in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname.

UNKNOWN Jan 12, 2022

CVE-2020-2252

Jenkins Mailer Plugin 1.32 and earlier does not perform hostname validation when connecting to the configured SMTP server.

UNKNOWN Sep 16, 2020