Jenkins Security Advisory: Multiple Plugin Vulnerabilities (XSS, XXE, CSRF, Path Traversal, CVE-2022-28133-28147)
Security AdvisorySA-CORE-2022-03-29HighJenkins
Affected:
- Bitbucket Server Integration Plugin up to and including 3.1.0
- Continuous Integration with Toad Edge Plugin up to and including 2.3
- Coverage/Complexity Scatter Plot Plugin up to and including 1.1.1
- Flaky Test Handler Plugin up to and including 1.2.1
- Instant-messaging Plugin up to and including 1.41
Fixed in:
- Bitbucket Server Integration Plugin 3.2.0
- Continuous Integration with Toad Edge Plugin 2.4
- Flaky Test Handler Plugin 1.2.2
- Instant-messaging Plugin 1.4.2
- JiraTestResultReporter Plugin 166.v0cc6208295b5
Referenced CVEs: CVE-2022-28142
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from www.jenkins.io, cleaned by our LLM pipeline, and translated to English. View original.