VulnerableCode Package Details - pkg:maven/org.jenkins-ci.plugins/git@3.9.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.jenkins-ci.plugins/git@3.9.0

Essentials
History (2)

purl	pkg:maven/org.jenkins-ci.plugins/git@3.9.0

Next non-vulnerable version	3.9.2
Latest non-vulnerable version	4.11.5
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-xgj6-rjgr-dqf1 Aliases: CVE-2018-1000182 GHSA-53wf-vqf9-cgf2	Server-Side Request Forgery (SSRF) A server-side request forgery vulnerability exists in the Jenkins Git Plugin that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.	3.9.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-04T14:30:54.269559+00:00	GHSA Importer	Affected by	VCID-xgj6-rjgr-dqf1	https://github.com/advisories/GHSA-53wf-vqf9-cgf2	38.1.0
2026-04-01T12:47:43.610276+00:00	GitLab Importer	Affected by	VCID-xgj6-rjgr-dqf1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/git/CVE-2018-1000182.yml	38.0.0