pkg:maven/org.jenkins-ci.plugins/assembla-auth
Type
maven
Namespace
org.jenkins-ci.plugins
Name
assembla-auth
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/assembla-auth package.
High
3
Medium
2
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.11 |
CVE-2019-10280
|
JENKINS:SECURITY-1093 | Assembla Auth Plugin stores credentials in plain text | low |
2019-04-03T00:00:00
(5 years ago) |
|
Affected | <= 1.14 |
CVE-2023-37961
|
JENKINS:SECURITY-2988 | CSRF vulnerability in `assembla-auth` | medium |
2023-07-12T00:00:00
(14 months ago) |
|
Affected | <= 1.14 |
CVE-2023-41945
|
JENKINS:SECURITY-3065 | Disabled permissions granted by `assembla-auth` | medium |
2023-09-06T00:00:00
(12 months ago) |
|
Affected | <= 1.14 |
CVE-2023-37961
|
MAVEN:GHSA-P756-66W2-35G7 | Jenkins Assembla Auth Plugin vulnerable to cross-site request forgery | high |
2023-07-12T18:30:39
(14 months ago) |
|
Affected | <= 1.14 |
CVE-2023-41945
|
MAVEN:GHSA-QF42-F5VF-6W99 | Disabled permissions granted by Jenkins Assembla Auth Plugin | high |
2023-09-06T15:30:26
(12 months ago) |
|
Affected | <= 1.11 |
CVE-2019-10280
|
MAVEN:GHSA-WMQ3-24JM-M8XH | Jenkins Assembla Auth Plugin stores credentials in plain text | high |
2022-05-13T01:15:01
(2 years ago) |
|
Fixed | = 1.13 |
CVE-2019-10280
|
MAVEN:GHSA-WMQ3-24JM-M8XH | Jenkins Assembla Auth Plugin stores credentials in plain text | high |
2022-05-13T01:15:01
(2 years ago) |