Jenkins Plugin

DATE	CVE	VULNERABILITY TITLE	RISK
2013-12-13	CVE-2013-5676	Cryptographic Issues vulnerability in Sonarsource Jenkins Plugin The Jenkins Plugin for SonarQube 3.7 and earlier allows remote authenticated users to obtain sensitive information (cleartext passwords) by reading the value in the sonar.sonarPassword parameter from jenkins/configure. network low complexity sonarsource CWE-310	4.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.