pkg:maven/org.jenkins-ci.plugins/saml
Type
maven
Namespace
org.jenkins-ci.plugins
Name
saml
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/saml package.
High
2
Moderate
1
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 2.0.7 |
CVE-2021-21678
|
 JENKINS:SECURITY-2469
|
`saml` allows bypassing CSRF protection for any URL | high |
2021-08-31T00:00:00
(3 years ago) |
|
| Fixed | = 2.0.8 |
CVE-2021-21678
|
JENKINS:SECURITY-2469
|
`saml` allows bypassing CSRF protection for any URL | high |
2021-08-31T00:00:00
(3 years ago) |
|
| Affected | <= 1.0.6 |
CVE-2018-1000602
|
JENKINS:SECURITY-916
|
HTTP session fixation vulnerability in SAML Plugin | medium |
2018-06-25T00:00:00
(6 years ago) |
|
| Fixed | = 1.0.7 |
CVE-2018-1000602
|
JENKINS:SECURITY-916
|
HTTP session fixation vulnerability in SAML Plugin | medium |
2018-06-25T00:00:00
(6 years ago) |
|
| Affected | <= 1.0.6 |
CVE-2018-1000602
|
 MAVEN:GHSA-4PJX-86PG-X4J5
|
Jenkins SAML Plugin Session Fixation vulnerability | moderate |
2022-05-14T03:07:02
(2 years ago) |
|
| Fixed | = 1.0.7 |
CVE-2018-1000602
|
MAVEN:GHSA-4PJX-86PG-X4J5
|
Jenkins SAML Plugin Session Fixation vulnerability | moderate |
2022-05-14T03:07:02
(2 years ago) |
|
| Affected | <= 2.0.7 |
CVE-2021-21678
|
MAVEN:GHSA-R5W3-PFQ8-3R82
|
Jenkins SAML Plugin allows bypassing CSRF protection for any URL | high |
2022-05-24T19:12:37
(2 years ago) |
|
| Fixed | = 2.0.8 |
CVE-2021-21678
|
MAVEN:GHSA-R5W3-PFQ8-3R82
|
Jenkins SAML Plugin allows bypassing CSRF protection for any URL | high |
2022-05-24T19:12:37
(2 years ago) |