Share
## https://sploitus.com/exploit?id=CNVD-2022-49795
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins EasyQA Plugin 1.0 and prior versions contain an information disclosure vulnerability that stems from the plugin storing unencrypted user passwords on the Jenkins controller in the global configuration file EasyQAPluginProperties.xml, which can be exploited by an attacker to view passwords.