## https://sploitus.com/exploit?id=CNVD-2022-49792
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. jenkins Convertigo Mobile Platform Plugin 1.1 and previous versions have an information disclosure vulnerability that stems from the plugin storing an unencrypted password in the job config.xml file on the Jenkins controller. An attacker could exploit this vulnerability to read the password information.