Lucene search
PRIOn knowledge basePRION:CVE-2018-1000010HistoryJan 23, 2018 - 2:29 p.m.
Server side request forgery (ssrf)
2018-01-2314:29:00
PRIOn knowledge base
www.prio-n.com
3
Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks.
References
Related
cve
cve
CVE-2018-1000010
2022-10-03 16:21:58
cvelist
cvelist
CVE-2018-1000010
2022-10-03 16:21:58
github
github
XXE vulnerability in Jenkins DRY Plugin
2022-05-14 03:46:09
nvd
nvd
CVE-2018-1000010
2018-01-23 14:29:00
osv
osv
CVE-2018-1000010
2018-01-23 14:29:00
XXE vulnerability in Jenkins DRY Plugin
2022-05-14 03:46:09