Description

Directory traversal vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with certain permissions to read arbitrary files via a symlink, related to building artifacts.

Remediation

References

CVE-2015-1807

Related Vulnerabilities

WordPress Plugin LearnPress-WordPress LMS Security Bypass (3.2.6.8)

WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.1)

WordPress Plugin WP Poll Maker-Best WordPress Poll for Voting Contest Arbitrary File Upload (3.4)

WordPress Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability (CVE-2020-4049)

WordPress Plugin Ultimate SMS Notifications for WooCommerce CSV Injection (1.4.1)

Severity

Low

Classification

CVE-2015-1807 CWE-22

Tags

Missing Update Known Vulnerabilities