Filtered by vendor Jenkins Subscriptions
Filtered by product Repo Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-43415 1 Jenkins 1 Repo 2024-11-21 7.5 High
Jenkins REPO Plugin 1.15.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2022-30949 1 Jenkins 1 Repo 2024-11-21 5.3 Medium
Jenkins REPO Plugin 1.14.0 and earlier allows attackers able to configure pipelines to check out some SCM repositories stored on the Jenkins controller's file system using local paths as SCM URLs, obtaining limited information about other projects' SCM contents.