GHSA-gpmw-h4wq-4rch, CVE-2019-10409
maven/hudson.plugins/project-inheritance
Missing Authorization
A missing permission check in Jenkins Project Inheritance Plugin 2.0.0 and earlier allowed attackers with Overall/Read permission to trigger project generation from templates.
All versions before 19.08.02
Upgrade to version 19.08.02 or above.
2024-01-31
source |