pkg:maven/org.jenkins-ci.plugins/reportportal
Type
maven
Namespace
org.jenkins-ci.plugins
Name
reportportal
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/reportportal package.
Moderate
4
Medium
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 0.5 |
CVE-2023-30523
CVE-2023-30524 |
JENKINS:SECURITY-2945 | Tokens stored and displayed in plain text by `reportportal` | medium |
2023-04-12T00:00:00
(17 months ago) |
|
Affected | <= 0.5 |
CVE-2023-30525
CVE-2023-30526 |
JENKINS:SECURITY-2950 | CSRF vulnerability and missing permission check in `reportportal` | medium |
2023-04-12T00:00:00
(17 months ago) |
|
Affected | <= 0.5 |
CVE-2023-30525
|
MAVEN:GHSA-C8FF-J5GM-6492 | Jenkins Report Portal Plugin Cross-Site Request Forgery vulnerability | moderate |
2023-04-12T18:30:36
(17 months ago) |
|
Affected | <= 0.5 |
CVE-2023-30526
|
MAVEN:GHSA-C9JF-RHVG-P65R | Jenkins Report Portal Plugin missing permissions check | moderate |
2023-04-12T18:30:36
(17 months ago) |
|
Affected | <= 0.5 |
CVE-2023-30524
|
MAVEN:GHSA-J55J-28WC-V338 | Jenkins Report Portal Plugin configuration form does not mask tokens | moderate |
2023-04-12T18:30:36
(17 months ago) |
|
Affected | <= 0.5 |
CVE-2023-30523
|
MAVEN:GHSA-QGW9-VGRF-H723 | Jenkins Report Portal Plugin allows users with Item/Extended Read permission to view tokens on Jenkins controller | moderate |
2023-04-12T18:30:36
(17 months ago) |