VYPR

Jenkins Plugin

by Sonarsource

CVEs (1)

  • CVE-2013-5676Dec 13, 2013
    risk 0.03cvss epss 0.05

    The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from jenkins/configure.