aendter.jenkins.plugins:filesystem-list-parameter-plugin

Maven2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting aendter.jenkins.plugins:filesystem-list-parameter-pluginpage 1 of 1

CVE-2022-34187MEDIUMCVSS 5.4EG 8.0
2022-06-23
vulnerable: 0.0.1 ... 0.0.7 (7 versions)
Jenkins Filesystem List Parameter Plugin 0.0.7 and earlier does not escape the name and description of File system objects list parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability explo…
CVE-2024-54004MEDIUMCVSS 4.3EG 4.3✓ Fixed in 0.0.15
2024-11-27
vulnerable: 0.0.1 ... 0.0.9 (14 versions)
Jenkins Filesystem List Parameter Plugin 0.0.14 and earlier does not restrict the path used for the File system objects list Parameter, allowing attackers with Item/Configure permission to enumerate file names on the Jenkins controller fil…

Check whether aendter.jenkins.plugins:filesystem-list-parameter-plugin is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for aendter.jenkins.plugins:filesystem-list-parameter-plugin CVEs against the assets you own.

Start Free Scan →