Filtered by vendor Jenkins Subscriptions
Filtered by product Parameterized Trigger Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-27195 1 Jenkins 1 Parameterized Trigger 2024-11-21 5.5 Medium
Jenkins Parameterized Trigger Plugin 2.43 and earlier captures environment variables passed to builds triggered using Jenkins Parameterized Trigger Plugin, including password parameter values, in their `build.xml` files. These values are stored unencrypted and can be viewed by users with access to the Jenkins controller file system.
CVE-2017-1000084 1 Jenkins 1 Parameterized Trigger 2024-11-21 N/A
Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project in Jenkins.