VYPR

Convert To Pipeline Plugin

by Jenkins Project

CVEs (2)

  • CVE-2023-28677Mar 23, 2023
    risk 0.00cvss epss 0.01

    Jenkins Convert To Pipeline Plugin 1.0 and earlier uses basic string concatenation to convert Freestyle projects' Build Environment, Build Steps, and Post-build Actions to the equivalent Pipeline step invocations, allowing attackers able to configure Freestyle projects to…

  • CVE-2023-28676Mar 23, 2023
    risk 0.00cvss epss 0.01

    A cross-site request forgery (CSRF) vulnerability in Jenkins Convert To Pipeline Plugin 1.0 and earlier allows attackers to create a Pipeline based on a Freestyle project, potentially leading to remote code execution (RCE).