Lucene search
China National Vulnerability DatabaseCNVD-2022-54927HistoryMar 31, 2022 - 12:00 a.m.
Jenkins RocketChat Notifier Plugin跨站请求伪造漏洞
2022-03-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
38.2%
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.Jenkins RocketChat Notifier Plugin 1.4.10 and earlier versions are vulnerable to cross-site request forgery, which can be exploited by an attacker to connect to a specified URL using specified credentials to connect to a specified URL.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins rocketchat notifier plugin | lt | 1.4.10 |
Related
osv
osv
CSRF vulnerability in Jenkins RocketChat Notifier Plugin
2022-03-30 00:00:25
CVE-2022-28138
2022-03-29 13:15:08
nvd
nvd
CVE-2022-28138
2022-03-29 13:15:08
cve
cve
CVE-2022-28138
2022-03-29 13:15:08
prion
prion
Cross site request forgery (csrf)
2022-03-29 13:15:00
cvelist
cvelist
CVE-2022-28138
2022-03-29 12:30:51
github
github
CSRF vulnerability in Jenkins RocketChat Notifier Plugin
2022-03-30 00:00:25
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-03-29)
2022-03-31 00:00:00