VYPR

Periodic Backup

by Jenkins Project

CVEs (1)

  • CVE-2017-1000086HigOct 5, 2017
    risk 0.52cvss 8.0epss 0.01

    The Periodic Backup Plugin did not perform any permission checks, allowing any user with Overall/Read access to change its settings, trigger backups, restore backups, download backups, and also delete all previous backups via log rotation. Additionally, the plugin was not…