Description
jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions (SECURITY-385). The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to.
Remediation
References
Related Vulnerabilities
Drupal Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-9450)
WordPress Plugin BePro Listings Arbitrary File Upload (2.2.0020)
WordPress Plugin Print My Blog-Print, PDF, & eBook Converter Server-Side Request Forgery (1.6.5)
WordPress CVE-2008-6767 Vulnerability (CVE-2008-6767)
WordPress Plugin Browser Blocker Cross-Site Scripting (0.5.6)