Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
Jenkins project

jenkins_testcomplete_support

6 Versions 3 CVEs

Versions

2.4.1

SEMANTIC 1 CVE

next of 2.4.1

OTHER 1 CVE

2.8.1

SEMANTIC 2 CVEs

unspecified

OTHER 2 CVEs

next of 2.8.1

OTHER 1 CVE

0

SINGLE_NUMBER 1 CVE

Recent CVEs

CVE-2023-33002

Jenkins TestComplete support Plugin 2.8.1 and earlier does not escape the TestComplete project name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.

UNKNOWN May 16, 2023

CVE-2023-24443

Jenkins TestComplete support Plugin 2.8.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

UNKNOWN Jan 24, 2023

CVE-2020-2209

Jenkins TestComplete support Plugin 2.4.1 and earlier stores a password unencrypted in job config.xml files on the Jenkins master where it can be viewed by users with Extended Read permission, or access to the master file system.

UNKNOWN Jul 02, 2020