GHSA-rcrv-6r7r-rr7m, CVE-2019-1003059
maven/org.jvnet.hudson.plugins/ftppublisher
Missing Authorization
A missing permission check in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpl#doLoginCheck method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
All versions up to 1.2
Unfortunately, there is no solution available yet.
2024-01-31
source |