VulnerableCode Package Details - pkg:maven/org.jenkins-ci.plugins/workflow-remote-loader@1.5

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.jenkins-ci.plugins/workflow-remote-loader@1.5

purl	pkg:maven/org.jenkins-ci.plugins/workflow-remote-loader@1.5

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-ftky-shfy-bufk	Unsafe entry in Script Security list of approved signatures in Pipeline Remote Loader Plugin Jenkins Pipeline Remote Loader Plugin before 1.5 provided a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.	CVE-2019-10328 GHSA-v558-fhw2-v46w

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-03T21:26:22.809636+00:00	GitLab Importer	Fixing	VCID-ftky-shfy-bufk	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jenkins-ci.plugins/workflow-remote-loader/CVE-2019-10328.yml	38.1.0
2026-04-01T16:02:19.748669+00:00	GHSA Importer	Fixing	VCID-ftky-shfy-bufk	https://github.com/advisories/GHSA-v558-fhw2-v46w	38.0.0
2026-04-01T13:09:45.836756+00:00	GithubOSV Importer	Fixing	VCID-ftky-shfy-bufk	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-v558-fhw2-v46w/GHSA-v558-fhw2-v46w.json	38.0.0