Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-1000092
HistoryOct 04, 2017 - 1:00 a.m.

CVE-2017-1000092

2017-10-0401:00:00
mitre
www.cve.org

0.001 Low

EPSS

Percentile

33.2%

JSON

Git Plugin connects to a user-specified Git repository as part of form validation. An attacker with no direct access to Jenkins but able to guess at a username/password credentials ID could trick a developer with job configuration permissions into following a link with a maliciously crafted Jenkins URL which would result in the Jenkins Git client sending the username and password to an attacker-controlled server.

Related

osv 2
github 1
prion 1
cve 1
veracode 1
redhatcve 1
nvd 1
osv
osv
Cross-Site Request Forgery in Jenkins Git Plugin
2022-05-17 00:33:22
CVE-2017-1000092
2017-10-05 01:29:03
github
github
Cross-Site Request Forgery in Jenkins Git Plugin
2022-05-17 00:33:22
prion
prion
Default credentials
2017-10-05 01:29:00
cve
cve
CVE-2017-1000092
2017-10-05 01:29:03
veracode
veracode
Information Disclosure
2019-05-02 05:51:40
redhatcve
redhatcve
CVE-2017-1000092
2017-07-14 10:24:04
nvd
nvd
CVE-2017-1000092
2017-10-05 01:29:03

0.001 Low

EPSS

Percentile

33.2%

JSON
Related for CVELIST:CVE-2017-1000092
osv2github1prion1cve1veracode1redhatcve1nvd1