CVE-2018-1000176 in Email Extension Plugin
摘要
由 VulDB • 2026-07-05
Jenkins Email Extension Plugin 2.61及更早版本中存在敏感信息泄露漏洞,该漏洞位于src/main/resources/hudson/plugins/emailext/ExtendedEmailPublisher/global.groovy和ExtendedEmailPublisherDescriptor.java中。攻击者若能够控制Jenkins管理员的Web浏览器(例如通过恶意扩展程序),即可获取配置的SMTP密码。
If you want to get best quality of vulnerability data, you may have to visit VulDB.