pkg:maven/org.jenkins-ci.plugins/reverse-proxy-auth-plugin
Type
maven
Namespace
org.jenkins-ci.plugins
Name
reverse-proxy-auth-plugin
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/reverse-proxy-auth-plugin package.
Moderate
1
Medium
1
Low
3
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.7.3 |
CVE-2022-45384
|
JENKINS:SECURITY-2094 | Password stored in plain text by `reverse-proxy-auth-plugin` | low |
2022-11-15T00:00:00
(22 months ago) |
|
Fixed | = 1.7.4 |
CVE-2022-45384
|
JENKINS:SECURITY-2094 | Password stored in plain text by `reverse-proxy-auth-plugin` | low |
2022-11-15T00:00:00
(22 months ago) |
|
Affected | <= 1.7.4 |
CVE-2023-32987
|
JENKINS:SECURITY-3002 | CSRF vulnerability in `reverse-proxy-auth-plugin` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Fixed | = 1.7.5 |
CVE-2023-32987
|
JENKINS:SECURITY-3002 | CSRF vulnerability in `reverse-proxy-auth-plugin` | medium |
2023-05-16T00:00:00
(16 months ago) |
|
Affected | <= 1.5 |
CVE-2018-1000150
|
JENKINS:SECURITY-736 | Reverse Proxy Auth persisted authorities cache on disk | low |
2018-03-26T00:00:00
(6 years ago) |
|
Fixed | = 1.6.0 |
CVE-2018-1000150
|
JENKINS:SECURITY-736 | Reverse Proxy Auth persisted authorities cache on disk | low |
2018-03-26T00:00:00
(6 years ago) |
|
Affected | <= 1.5 |
CVE-2018-1000150
|
MAVEN:GHSA-M9J2-GRQF-FG26 | Jenkins Reverse Proxy Auth Plugin allows attackers with local file system access to obtain a list of authorities for logged in users | low |
2022-05-14T03:23:45
(2 years ago) |
|
Fixed | = 1.6.0 |
CVE-2018-1000150
|
MAVEN:GHSA-M9J2-GRQF-FG26 | Jenkins Reverse Proxy Auth Plugin allows attackers with local file system access to obtain a list of authorities for logged in users | low |
2022-05-14T03:23:45
(2 years ago) |
|
Affected | < 1.7.5 |
CVE-2023-32987
|
MAVEN:GHSA-PMMR-R9V2-59P8 | Jenkins Reverse Proxy Auth Plugin cross-site request forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |
|
Fixed | = 1.7.5 |
CVE-2023-32987
|
MAVEN:GHSA-PMMR-R9V2-59P8 | Jenkins Reverse Proxy Auth Plugin cross-site request forgery vulnerability | moderate |
2023-05-16T18:30:16
(16 months ago) |