VulnerableCode Package Details - pkg:maven/org.jenkins-ci.plugins/jira@3.0.10

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.jenkins-ci.plugins/jira@3.0.10

purl	pkg:maven/org.jenkins-ci.plugins/jira@3.0.10

Next non-vulnerable version	3.0.11
Latest non-vulnerable version	3.12
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-sprz-dww1-vufr Aliases: CVE-2019-16541 GHSA-98m4-m2c3-qxgq	Jenkins JIRA Plugin allows users to select and use credentials with System scope Jenkins JIRA Plugin 3.0.10 and earlier does not declare the correct (folder) scope for per-folder Jira site definitions, allowing users to select and use credentials with System scope. Jira Plugin 3.0.11 defines the appropriate folder context for credential lookup. As a side effect, existing per-folder Jira sites may lose access to already configured System-scoped credentials, as if no credential was specified in the first place.	3.0.11 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-04T14:32:22.031520+00:00	GHSA Importer	Affected by	VCID-sprz-dww1-vufr	https://github.com/advisories/GHSA-98m4-m2c3-qxgq	38.1.0
2026-04-02T12:36:12.796065+00:00	GitLab Importer	Affected by	VCID-sprz-dww1-vufr	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/jira/CVE-2019-16541.yml	38.0.0