pkg:maven/org.jenkins-ci.plugins/mattermost
Type
maven
Namespace
org.jenkins-ci.plugins
Name
mattermost
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/mattermost package.
Moderate
2
Medium
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 2.7.0 |
CVE-2019-10459
|
JENKINS:SECURITY-1628 | `mattermost` stored webhook endpoint token in plain text | medium |
2019-10-23T00:00:00
(4 years ago) |
|
Fixed | = 2.7.1 |
CVE-2019-10459
|
JENKINS:SECURITY-1628 | `mattermost` stored webhook endpoint token in plain text | medium |
2019-10-23T00:00:00
(4 years ago) |
|
Affected | <= 2.6.2 |
CVE-2019-1003026
|
JENKINS:SECURITY-985 | SSRF vulnerability due to missing permission check in Mattermost Notification Plugin | medium |
2019-02-19T00:00:00
(5 years ago) |
|
Fixed | = 2.6.3 |
CVE-2019-1003026
|
JENKINS:SECURITY-985 | SSRF vulnerability due to missing permission check in Mattermost Notification Plugin | medium |
2019-02-19T00:00:00
(5 years ago) |
|
Affected | <= 2.6.2 |
CVE-2019-1003026
|
MAVEN:GHSA-WXJ2-QC9P-65R3 | Jenkins Mattermost Notification Plugin vulnerable to SSRF | moderate |
2022-05-13T01:31:34
(2 years ago) |
|
Fixed | = 2.6.3 |
CVE-2019-1003026
|
MAVEN:GHSA-WXJ2-QC9P-65R3 | Jenkins Mattermost Notification Plugin vulnerable to SSRF | moderate |
2022-05-13T01:31:34
(2 years ago) |
|
Affected | <= 2.7.0 |
CVE-2019-10459
|
MAVEN:GHSA-XCJ6-4355-2823 | Jenkins Mattermost Notification Plugin contains unencrypted storage of secret token | moderate |
2022-05-24T16:59:36
(2 years ago) |
|
Fixed | = 2.7.1 |
CVE-2019-10459
|
MAVEN:GHSA-XCJ6-4355-2823 | Jenkins Mattermost Notification Plugin contains unencrypted storage of secret token | moderate |
2022-05-24T16:59:36
(2 years ago) |