CVE-2018-1000600

A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.1 and earlier in GitHubTokenCredentialsCreator.java that allows attackers to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
References
Configurations

Configuration 1

cpe:2.3:a:jenkins:github:*:*:*:*:*:jenkins:*:*

Information

Published : 2018-06-26 05:29

Updated : 2019-10-03 12:03


NVD link : CVE-2018-1000600

Mitre link : CVE-2018-1000600

Products Affected
No products.
CWE