A path traversal vulnerability exists in Jenkins HTML Publisher Plugin 1.15 and older in HtmlPublisherTarget.java that allows attackers able to configure the HTML Publisher build step to override arbitrary files on the Jenkins master.
Advisories
Source ID Title
EUVD EUVD EUVD-2022-2469 A path traversal vulnerability exists in Jenkins HTML Publisher Plugin 1.15 and older in HtmlPublisherTarget.java that allows attackers able to configure the HTML Publisher build step to override arbitrary files on the Jenkins master.
Github GHSA Github GHSA GHSA-4x63-3p7q-xmh7 Jenkins HTML Publisher Plugin path traversal vulnerability
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-09-17T02:22:07.356Z

Reserved: 2018-05-08T00:00:00Z

Link: CVE-2018-1000175

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-05-08T15:29:00.347

Modified: 2024-11-21T03:39:51.230

Link: CVE-2018-1000175

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.