Количество 2
Количество 2
CVE-2020-2200
Jenkins Play Framework Plugin 1.0.2 and earlier lets users specify the path to the `play` command on the Jenkins master for a form validation endpoint, resulting in an OS command injection vulnerability exploitable by users able to store such a file on the Jenkins master.
GHSA-h5mv-fv98-gqmq
OS command injection vulnerability in Jenkins Play Framework Plugin
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-2200 Jenkins Play Framework Plugin 1.0.2 and earlier lets users specify the path to the `play` command on the Jenkins master for a form validation endpoint, resulting in an OS command injection vulnerability exploitable by users able to store such a file on the Jenkins master. | CVSS3: 8.8 | 3% Низкий | больше 5 лет назад |
| GHSA-h5mv-fv98-gqmq OS command injection vulnerability in Jenkins Play Framework Plugin | CVSS3: 8.8 | 3% Низкий | больше 3 лет назад |
Уязвимостей на страницу