Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.149 and earlier does not mask credentials displayed on the configuration form, increasing the potential for attackers to observe and capture them.
https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-2962