← Back

Play Framework

play_framework

Vendor: Jenkins • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-2200
1Jenkins
1Play Framework
Nov 21, 2024
Jun 3, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Jenkins Play Framework Plugin 1.0.2 and earlier lets users specify the path to the `play` command on the Jenkins master for a form validation endpoint, resulting in an OS command injection vulnerability exploitable by us...Show more
Jenkins Play Framework Plugin 1.0.2 and earlier lets users specify the path to the `play` command on the Jenkins master for a form validation endpoint, resulting in an OS command injection vulnerability exploitable by users able to store such a file on the Jenkins master.Show less