Description
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.
Remediation
References
Related Vulnerabilities
Atlassian Jira Observable Discrepancy Vulnerability (CVE-2020-4028)
Serendipity Other Vulnerability (CVE-2005-3129)
WordPress Plugin Site Reviews Cross-Site Scripting (5.17.2)
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-27568)
WordPress Plugin SKU Shortlink For WooCommerce Arbitrary File Disclosure (1.3.4)