Vulnerabilities > Jenkins > Favorite Plugin
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-11-01 | CVE-2017-1000243 | Missing Authorization vulnerability in Jenkins Favorite Plugin Jenkins Favorite Plugin 2.1.4 and older does not perform permission checks when changing favorite status, allowing any user to set any other user's favorites | 4.0 |