Description
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents.
Remediation
References
Related Vulnerabilities
TYPO3 Improper Input Validation Vulnerability (CVE-2014-9509)
WordPress Plugin Meow Gallery (+ Gallery Block) SQL Injection (4.1.8)
WordPress Plugin Slimstat Analytics Cross-Site Scripting (4.9.2)
WordPress Plugin Checklist Cross-Site Scripting (1.1.5)
WordPress Plugin Easy Form Builder Arbitrary File Upload (1.0)