Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2020-2150
CVE-2020-2150
Jenkins Sonar Quality Gates Plugin 1.3.1 and earlier transmits configured credentials in plain text as part of its global Jenkins configuration form, potentially resulting in their exposure.
Published Feb 3, 2026
https://github.com/advisories/GHSA-6fh3-xhwg-7hfh
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.0.4
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.0.5
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.0.6
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.1.0
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.1.1
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.1.2
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.2.0
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.3.0
maven
org.jenkins-ci.plugins/sonar-quality-gates
1.3.1
1-9 of 9
CVE-2020-2150 | Components Impacted | Sonatype Guide | Sonatype Guide
