|
||||||||||||||
|
This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators. For more information on JIRA, see: http://www.atlassian.com/software/jira |
||||||||||||||
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
Well if any code calls User.get("some name") then a User with that name is created and cached in the system, and /asynchPeople (i.e. the People list from top level, not inside any view or folder) will show such transient users. But I do not know how such users would have been created unless your security realm let something log in with those names.
By the way if you believe you have found a reproducible security vulnerability, please file in the SECURITY component rather than the general issue tracker.