pkg:maven/org.jenkins-ci.plugins/assembla-auth
Type
maven
Namespace
org.jenkins-ci.plugins
Name
assembla-auth
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/assembla-auth package.
High
3
Medium
2
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 1.11 |
CVE-2019-10280
|
 JENKINS:SECURITY-1093
|
Assembla Auth Plugin stores credentials in plain text | low |
2019-04-03T00:00:00
(5 years ago) |
|
| Affected | <= 1.14 |
CVE-2023-37961
|
JENKINS:SECURITY-2988
|
CSRF vulnerability in `assembla-auth` | medium |
2023-07-12T00:00:00
(14 months ago) |
|
| Affected | <= 1.14 |
CVE-2023-41945
|
JENKINS:SECURITY-3065
|
Disabled permissions granted by `assembla-auth` | medium |
2023-09-06T00:00:00
(12 months ago) |
|
| Affected | <= 1.14 |
CVE-2023-37961
|
 MAVEN:GHSA-P756-66W2-35G7
|
Jenkins Assembla Auth Plugin vulnerable to cross-site request forgery | high |
2023-07-12T18:30:39
(14 months ago) |
|
| Affected | <= 1.14 |
CVE-2023-41945
|
MAVEN:GHSA-QF42-F5VF-6W99
|
Disabled permissions granted by Jenkins Assembla Auth Plugin | high |
2023-09-06T15:30:26
(12 months ago) |
|
| Affected | <= 1.11 |
CVE-2019-10280
|
MAVEN:GHSA-WMQ3-24JM-M8XH
|
Jenkins Assembla Auth Plugin stores credentials in plain text | high |
2022-05-13T01:15:01
(2 years ago) |
|
| Fixed | = 1.13 |
CVE-2019-10280
|
MAVEN:GHSA-WMQ3-24JM-M8XH
|
Jenkins Assembla Auth Plugin stores credentials in plain text | high |
2022-05-13T01:15:01
(2 years ago) |