Vulernabilities in Gradle Enterprise

News

Marat Aytuganov identified vulnerabilities in Gradle Enterprise. These have been patched in version 2020.2.5

 

Details to these advisories:

CSNC-2020-014 / Test distribution usage search form allows XSS

CSNC-2020-015 / Potential disclosure of session cookies via header reflection

Back