VYPR

Maven package

org.jenkinsci.plugins/pipeline-reporter-by-redpen

pkg:maven/org.jenkinsci.plugins/pipeline-reporter-by-redpen

Vulnerabilities (1)

  • CVE-2025-67643Dec 10, 2025
    affected <= 1.054

    Jenkins Redpen - Pipeline Reporter for Jira Plugin 1.054.v7b_9517b_6b_202 and earlier does not correctly perform path validation of the workspace directory while uploading artifacts to Jira, allowing attackers with Item/Configure permission to retrieve files present on the Jenkin