Jenkins Security Advisory: Multiple Plugin Vulnerabilities (XSS, XXE, CSRF, Path Traversal, CVE-2022-28133-28147)

www.jenkins.io 2025-11-13翻訳準備中…中国語で表示中中国語 →English →

Security AdvisorySA-CORE-2022-03-29HighJenkins

Affected:

Bitbucket Server Integration Plugin up to and including 3.1.0
Continuous Integration with Toad Edge Plugin up to and including 2.3
Coverage/Complexity Scatter Plot Plugin up to and including 1.1.1
Flaky Test Handler Plugin up to and including 1.2.1
Instant-messaging Plugin up to and including 1.41

Fixed in:

Bitbucket Server Integration Plugin 3.2.0
Continuous Integration with Toad Edge Plugin 2.4
Flaky Test Handler Plugin 1.2.2
Instant-messaging Plugin 1.4.2
JiraTestResultReporter Plugin 166.v0cc6208295b5

参照 CVE: CVE-2022-28142

文章内图片已隐藏以节省流量 · 升级 Pro 后可见图片及离线存档

本文由本平台从 www.jenkins.io 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

离线存档

离线截图 & PDF 为 Pro 专属