pkg:maven/org.jenkins-ci.plugins/qualys-pc
Type
maven
Namespace
org.jenkins-ci.plugins
Name
qualys-pc
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/qualys-pc package.
High
2
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.0.5 |
CVE-2023-6147
|
JENKINS:SECURITY-3005 | XXE vulnerability in `qualys-pc` | high |
2024-01-24T00:00:00
(7 months ago) |
|
Fixed | = 1.0.6 |
CVE-2023-6147
|
JENKINS:SECURITY-3005 | XXE vulnerability in `qualys-pc` | high |
2024-01-24T00:00:00
(7 months ago) |
|
Affected | <= 1.0.5 |
CVE-2023-6148
|
JENKINS:SECURITY-3006 | Stored XSS vulnerability in `qualys-pc` | high |
2024-01-24T00:00:00
(7 months ago) |
|
Fixed | = 1.0.6 |
CVE-2023-6148
|
JENKINS:SECURITY-3006 | Stored XSS vulnerability in `qualys-pc` | high |
2024-01-24T00:00:00
(7 months ago) |
|
Affected | <= 1.0.5 | JENKINS:SECURITY-3007 | Incorrect permission checks in `qualys-pc` allow capturing credentials | medium |
2024-01-24T00:00:00
(7 months ago) |
||
Fixed | = 1.0.6 | JENKINS:SECURITY-3007 | Incorrect permission checks in `qualys-pc` allow capturing credentials | medium |
2024-01-24T00:00:00
(7 months ago) |