A vulnerability was found in Assembla Plugin up to 1.4 on Jenkins. It has been declared as critical . This affects an unknown function. The manipulation results in permission issues. This vulnerability is known as CVE-2026-57304 . It is possible to launch the attack remotely. No exploit is available.