Jenkins Script Security Plugin vulnerabilities

CVE-2012-6153 [HIGH] Jenkins Security Advisory 2017-10-11 Title: Jenkins Security Advisory 2017-10-11 Jenkins Security Advisory 2017-10-11 This advisory announces multiple vulnerabilities in Jenkins (weekly and LTS), and these plugins: Maven Plugin Swarm Plugin Client Speaks! Plugin Description Arbitrary shell command execution on controller by users with Agent-related permissions SECURITY-478 / CVE-2017-1000393 Users with permissio

CVE-2017-1000102 [MEDIUM] Jenkins Security Advisory 2017-08-07 Title: Jenkins Security Advisory 2017-08-07 Jenkins Security Advisory 2017-08-07 This advisory announces vulnerabilities in these Jenkins plugins: Blue Ocean Config File Provider Plugin Datadog Plugin Deploy to container Plugin DRY Plugin OWASP Dependency-Check Plugin Pipeline: Groovy Plugin Pipeline: Input Step Plugin Script Security Plugin Static Analysis Uti

CVE-2017-1000084 [MEDIUM] Jenkins Security Advisory 2017-07-10 Title: Jenkins Security Advisory 2017-07-10 Jenkins Security Advisory 2017-07-10 This advisory originally recommended upgrading Poll SCM plugin to version 1.4. This was incorrect. Version 1.3.1 contains the fix. This advisory announces vulnerabilities in these Jenkins plugins: Docker Commons Plugin Git Plugin GitHub Branch Source Plugin Parameterized Trigger Plu

CVE-2016-3101 [MEDIUM] Jenkins Security Advisory 2016-04-11 Title: Jenkins Security Advisory 2016-04-11 Jenkins Security Advisory 2016-04-11 This advisory announces multiple vulnerabilities in these Jenkins plugins: Extra Columns Plugin Script Security Plugin (bundled since Jenkins 1.600 and Jenkins 1.596.1; dependency of Pipeline Plugin, Matrix Project Plugin, and others) Description Stored XSS vulnerability in Extra Columns Plugin SEC