GHSA-2r5w-jh6g-8hffMediumCVSS 5.4
A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with...
🔗 CVE IDs covered (1)
📋 Description
A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using an attacker-specified username and password.