VYPR

Maven package

org.jenkins-ci.plugins/mailcommander

pkg:maven/org.jenkins-ci.plugins/mailcommander

Vulnerabilities (1)

  • CVE-2020-2318Nov 4, 2020
    affected <= 1.0.0

    Jenkins Mail Commander Plugin for Jenkins-ci Plugin 1.0.0 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Read permission, or access to the Jenkins controller file system.