pkg:maven/org.jenkins-ci.plugins/qualys-pc

Type maven

Namespace org.jenkins-ci.plugins

Name qualys-pc

Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/qualys-pc package.

Repository: https://mvnrepository.com/artifact/org.jenkins-ci.plugins/qualys-pc

High 2

Medium 1

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	<= 1.0.5		CVE-2023-6147	JENKINS:SECURITY-3005	XXE vulnerability in `qualys-pc`	high	2024-01-24T00:00:00 (7 months ago)
Fixed	= 1.0.6		CVE-2023-6147	JENKINS:SECURITY-3005	XXE vulnerability in `qualys-pc`	high	2024-01-24T00:00:00 (7 months ago)
Affected	<= 1.0.5		CVE-2023-6148	JENKINS:SECURITY-3006	Stored XSS vulnerability in `qualys-pc`	high	2024-01-24T00:00:00 (7 months ago)
Fixed	= 1.0.6		CVE-2023-6148	JENKINS:SECURITY-3006	Stored XSS vulnerability in `qualys-pc`	high	2024-01-24T00:00:00 (7 months ago)
Affected	<= 1.0.5			JENKINS:SECURITY-3007	Incorrect permission checks in `qualys-pc` allow capturing credentials	medium	2024-01-24T00:00:00 (7 months ago)
Fixed	= 1.0.6			JENKINS:SECURITY-3007	Incorrect permission checks in `qualys-pc` allow capturing credentials	medium	2024-01-24T00:00:00 (7 months ago)