2020-11-04 14:35:36
jenkins
PUBLISHED
Jenkins Active Directory Plugin 2.19 and earlier allows attackers to log in as any user if a magic constant is used as the password.