pkg:maven/org.jenkins-ci.plugins/bitbucket-oauth
Type
maven
Namespace
org.jenkins-ci.plugins
Name
bitbucket-oauth
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/bitbucket-oauth package.
Critical
1
High
2
Moderate
1
Medium
1
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 0.9 |
CVE-2019-10460
|
JENKINS:SECURITY-1546 | `bitbucket-oauth` stored credentials in plain text | low |
2019-10-23T00:00:00
(4 years ago) |
|
Fixed | = 0.10 |
CVE-2019-10460
|
JENKINS:SECURITY-1546 | `bitbucket-oauth` stored credentials in plain text | low |
2019-10-23T00:00:00
(4 years ago) |
|
Affected | <= 0.12 |
CVE-2023-24428
|
JENKINS:SECURITY-2981 | CSRF vulnerability in `bitbucket-oauth` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
Fixed | = 0.13 |
CVE-2023-24428
|
JENKINS:SECURITY-2981 | CSRF vulnerability in `bitbucket-oauth` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
Affected | <= 0.12 |
CVE-2023-24427
|
JENKINS:SECURITY-2982 | Session fixation vulnerability in `bitbucket-oauth` | high |
2023-01-24T00:00:00
(20 months ago) |
|
Fixed | = 0.13 |
CVE-2023-24427
|
JENKINS:SECURITY-2982 | Session fixation vulnerability in `bitbucket-oauth` | high |
2023-01-24T00:00:00
(20 months ago) |
|
Affected | < 0.13 |
CVE-2023-24428
|
MAVEN:GHSA-685J-36QX-3VP2 | Cross-site request forgery vulnerability in Jenkins Bitbucket OAuth Plugin | moderate |
2023-01-26T21:30:18
(19 months ago) |
|
Fixed | = 0.13 |
CVE-2023-24428
|
MAVEN:GHSA-685J-36QX-3VP2 | Cross-site request forgery vulnerability in Jenkins Bitbucket OAuth Plugin | moderate |
2023-01-26T21:30:18
(19 months ago) |
|
Affected | < 0.10 |
CVE-2019-10460
|
MAVEN:GHSA-84H6-JF8X-FF2J | Jenkins Bitbucket OAuth Plugin contains Insufficiently Protected Credentials | high |
2022-05-24T16:59:37
(2 years ago) |
|
Fixed | = 0.10 |
CVE-2019-10460
|
MAVEN:GHSA-84H6-JF8X-FF2J | Jenkins Bitbucket OAuth Plugin contains Insufficiently Protected Credentials | high |
2022-05-24T16:59:37
(2 years ago) |
|
Affected | < 0.13 |
CVE-2023-24427
|
MAVEN:GHSA-X9Q4-QWFH-9GJQ | Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
Fixed | = 0.13 |
CVE-2023-24427
|
MAVEN:GHSA-X9Q4-QWFH-9GJQ | Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |