[JENKINS-26721] FilenameChoiceListProvider cause security problems

Type: Bug
Resolution: Fixed
Priority: Major
Component/s: extensible-choice-parameter-plugin
Labels:
- security
Environment:
extensible-choice-parameter-1.2.2

Similar Issues:
Powered by SuggestiMate

Show

FilenameChoiceListProvider lists all files with specified patterns.
This allows evil users to see lists of files on the host where Jenkins runs.
Generally, it can cause security problems.

is related to

JENKINS-27375 Add options to enable / disable choice providers

Closed

ikedam added a comment - 2015-05-16 06:50

Fixed with ~~JENKINS-27375~~, extensible-choice-parameter-1.3.0.
Anyway, this is a also a issue with Execute shell, Execute Windows Batch.

ikedam added a comment - 2015-05-16 06:50 Fixed with JENKINS-27375 , extensible-choice-parameter-1.3.0. Anyway, this is a also a issue with Execute shell, Execute Windows Batch.

ikedam added a comment - 2015-05-16 06:50

Fixed with 1.3.0.

ikedam added a comment - 2015-05-16 06:50 Fixed with 1.3.0.

Assignee:: ikedam

Reporter:: ikedam

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2015-01-31 02:03

Updated:: 2015-05-16 06:50

Resolved:: 2015-05-16 06:50

Jenkins

Details

Description

Attachments

Issue Links

Activity

Collapse comment: ikedam added a comment - 2015-05-16 06:50

Expand comment: ikedam added a comment - 2015-05-16 06:50

Collapse comment: ikedam added a comment - 2015-05-16 06:50

Expand comment: ikedam added a comment - 2015-05-16 06:50

People

Dates