CVE-2018-1000176 in Email Extension Plugin信息

摘要

由 VulDB • 2026-07-05

Jenkins Email Extension Plugin 2.61及更早版本中存在敏感信息泄露漏洞,该漏洞位于src/main/resources/hudson/plugins/emailext/ExtendedEmailPublisher/global.groovy和ExtendedEmailPublisherDescriptor.java中。攻击者若能够控制Jenkins管理员的Web浏览器(例如通过恶意扩展程序),即可获取配置的SMTP密码。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!