cve/CVE-2016-3727.md at d265b01db84ea263ae08fa7d2c08cb82387c2083

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The API URL computer/(master)/api/xml in Jenkins before 2.3 and LTS before 1.651.2 allows remote authenticated users with extended read permission for the master node to obtain sensitive information about the global configuration via unspecified vectors.

POC

Reference

https://www.cloudbees.com/jenkins-security-advisory-2016-05-11

Github

https://github.com/ARPSyndicate/cvemon

743 B Raw Blame History

CVE-2016-3727

Description

POC

Reference

Github

743 B

Raw Blame History