Количество 2
Количество 2
CVE-2025-64150
A missing permission check in Jenkins Publish to Bitbucket Plugin 0.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
GHSA-wpr5-rc2j-99p2
Jenkins Publish to Bitbucket Plugin is missing a permissions check
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-64150 A missing permission check in Jenkins Publish to Bitbucket Plugin 0.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | CVSS3: 5.4 | 0% Низкий | 3 месяца назад |
| GHSA-wpr5-rc2j-99p2 Jenkins Publish to Bitbucket Plugin is missing a permissions check | CVSS3: 5.4 | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу