Description
The doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users with the ADMINISTER permission to obtain sensitive information via vectors related to heapDump.
Remediation
References
Related Vulnerabilities
WordPress Plugin LifterLMS-WP LMS for eLearning, Online Courses, & Quizzes SQL Injection (7.6.2)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.23)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1903)
WordPress Plugin Download Monitor Information Disclosure (1.6.3)