pkg:maven/org.jenkins-ci.plugins/bitbucket-oauth
Type
maven
Namespace
org.jenkins-ci.plugins
Name
bitbucket-oauth
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/bitbucket-oauth package.
Critical
1
High
2
Moderate
1
Medium
1
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 0.9 |
CVE-2019-10460
|
 JENKINS:SECURITY-1546
|
`bitbucket-oauth` stored credentials in plain text | low |
2019-10-23T00:00:00
(4 years ago) |
|
| Fixed | = 0.10 |
CVE-2019-10460
|
JENKINS:SECURITY-1546
|
`bitbucket-oauth` stored credentials in plain text | low |
2019-10-23T00:00:00
(4 years ago) |
|
| Affected | <= 0.12 |
CVE-2023-24428
|
JENKINS:SECURITY-2981
|
CSRF vulnerability in `bitbucket-oauth` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
| Fixed | = 0.13 |
CVE-2023-24428
|
JENKINS:SECURITY-2981
|
CSRF vulnerability in `bitbucket-oauth` | medium |
2023-01-24T00:00:00
(20 months ago) |
|
| Affected | <= 0.12 |
CVE-2023-24427
|
JENKINS:SECURITY-2982
|
Session fixation vulnerability in `bitbucket-oauth` | high |
2023-01-24T00:00:00
(20 months ago) |
|
| Fixed | = 0.13 |
CVE-2023-24427
|
JENKINS:SECURITY-2982
|
Session fixation vulnerability in `bitbucket-oauth` | high |
2023-01-24T00:00:00
(20 months ago) |
|
| Affected | < 0.13 |
CVE-2023-24428
|
 MAVEN:GHSA-685J-36QX-3VP2
|
Cross-site request forgery vulnerability in Jenkins Bitbucket OAuth Plugin | moderate |
2023-01-26T21:30:18
(19 months ago) |
|
| Fixed | = 0.13 |
CVE-2023-24428
|
MAVEN:GHSA-685J-36QX-3VP2
|
Cross-site request forgery vulnerability in Jenkins Bitbucket OAuth Plugin | moderate |
2023-01-26T21:30:18
(19 months ago) |
|
| Affected | < 0.10 |
CVE-2019-10460
|
MAVEN:GHSA-84H6-JF8X-FF2J
|
Jenkins Bitbucket OAuth Plugin contains Insufficiently Protected Credentials | high |
2022-05-24T16:59:37
(2 years ago) |
|
| Fixed | = 0.10 |
CVE-2019-10460
|
MAVEN:GHSA-84H6-JF8X-FF2J
|
Jenkins Bitbucket OAuth Plugin contains Insufficiently Protected Credentials | high |
2022-05-24T16:59:37
(2 years ago) |
|
| Affected | < 0.13 |
CVE-2023-24427
|
MAVEN:GHSA-X9Q4-QWFH-9GJQ
|
Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |
|
| Fixed | = 0.13 |
CVE-2023-24427
|
MAVEN:GHSA-X9Q4-QWFH-9GJQ
|
Session fixation vulnerability in Jenkins Bitbucket OAuth Plugin | critical |
2023-01-26T21:30:18
(19 months ago) |