Maven package
org.jenkins-ci.plugins/svn-partial-release-mgr
pkg:maven/org.jenkins-ci.plugins/svn-partial-release-mgr
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-28159 | — | <= 1.0.1 | — | Mar 6, 2024 | A missing permission check in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers with Item/Read permission to trigger a build. | ||
| CVE-2024-28158 | — | <= 1.0.1 | — | Mar 6, 2024 | A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers to trigger a build. | ||
| CVE-2020-2199 | — | <= 1.0.1 | — | Jun 3, 2020 | Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier does not escape the error message for the repository URL field form validation, resulting in a reflected cross-site scripting vulnerability. |
- CVE-2024-28159Mar 6, 2024affected <= 1.0.1
A missing permission check in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers with Item/Read permission to trigger a build.
- CVE-2024-28158Mar 6, 2024affected <= 1.0.1
A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier allows attackers to trigger a build.
- CVE-2020-2199Jun 3, 2020affected <= 1.0.1
Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier does not escape the error message for the repository URL field form validation, resulting in a reflected cross-site scripting vulnerability.