Jenkins Dingding JSON Pusher Plugin 2.0 and previous versions does not mask access tokens displayed on the job configuration form, increasing the potential for malicious users to observe and capture them.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins dingding json pusher |