Vulnerabilities > Jenkins > Favorite Plugin

DATE CVE VULNERABILITY TITLE RISK
2017-11-01 CVE-2017-1000243 Missing Authorization vulnerability in Jenkins Favorite Plugin
Jenkins Favorite Plugin 2.1.4 and older does not perform permission checks when changing favorite status, allowing any user to set any other user's favorites
network
low complexity
jenkins CWE-862
4.0