pkg:maven/org.jenkinsci.plugins/octoperf
Type
maven
Namespace
org.jenkinsci.plugins
Name
octoperf
Known advisories, vulnerabilities and fixes for org.jenkinsci.plugins/octoperf package.
Moderate
5
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 4.5.2 |
CVE-2023-28672
|
MAVEN:GHSA-J9H4-P6P7-8652 | Jenkins OctoPerf Load Testing Plugin vulnerable to credential capture | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Fixed | = 4.5.2 |
CVE-2023-28672
|
MAVEN:GHSA-J9H4-P6P7-8652 | Jenkins OctoPerf Load Testing Plugin vulnerable to credential capture | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Affected | <= 4.5.2 |
CVE-2023-28673
|
MAVEN:GHSA-MJG3-2V66-P34J | Jenkins OctoPerf Load Testing Plugin missing permission check allows for ID enumeration | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Fixed | = 4.5.3 |
CVE-2023-28673
|
MAVEN:GHSA-MJG3-2V66-P34J | Jenkins OctoPerf Load Testing Plugin missing permission check allows for ID enumeration | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Affected | <= 4.5.2 |
CVE-2023-28675
|
MAVEN:GHSA-P3W6-3F7F-PM98 | Jenkins OctoPerf Load Testing Plugin missing permission check allows for unauthorized server connections | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Fixed | = 4.5.3 |
CVE-2023-28675
|
MAVEN:GHSA-P3W6-3F7F-PM98 | Jenkins OctoPerf Load Testing Plugin missing permission check allows for unauthorized server connections | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Affected | < 4.5.1 |
CVE-2023-28671
|
MAVEN:GHSA-WQ3W-3RXH-VCXX | Jenkins OctoPerf Load Testing Plugin vulnerable to Cross-site Request Forgery | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Fixed | = 4.5.1 |
CVE-2023-28671
|
MAVEN:GHSA-WQ3W-3RXH-VCXX | Jenkins OctoPerf Load Testing Plugin vulnerable to Cross-site Request Forgery | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Affected | < 4.5.3 |
CVE-2023-28674
|
MAVEN:GHSA-X263-HP5C-P2RJ | Jenkins OctoPerf Load Testing Plugin vulnerable to Cross-site Request Forgery | moderate |
2023-04-02T21:30:17
(17 months ago) |
|
Fixed | = 4.5.3 |
CVE-2023-28674
|
MAVEN:GHSA-X263-HP5C-P2RJ | Jenkins OctoPerf Load Testing Plugin vulnerable to Cross-site Request Forgery | moderate |
2023-04-02T21:30:17
(17 months ago) |