VYPR

Maven package

org.jenkins-ci.plugins/cloudbees-folder

pkg:maven/org.jenkins-ci.plugins/cloudbees-folder

Vulnerabilities (3)

  • CVE-2023-40338MedAug 16, 2023
    affected < 6.848.ve3bfixed 6.848.ve3b

    Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.

  • CVE-2023-40337MedAug 16, 2023
    affected < 6.848.ve3bfixed 6.848.ve3b

    A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy a view inside a folder.

  • CVE-2023-40336HigAug 16, 2023
    affected < 6.848.ve3bfixed 6.848.ve3b

    A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders.