Lucene search
JenkinsCVELIST:CVE-2019-10289HistoryApr 04, 2019 - 3:38 p.m.
CVE-2019-10289
2019-04-0415:38:50
jenkins
www.cve.org
3
EPSS
0.002
Percentile
58.6%
A cross-site request forgery vulnerability in Jenkins Netsparker Cloud Scan Plugin 1.1.5 and older in the NCScanBuilder.DescriptorImpl#doValidateAPI form validation method allowed attackers to initiate a connection to an attacker-specified server.
CNA Affected
[
{
"product": "Jenkins Netsparker Cloud Scan Plugin",
"vendor": "Jenkins project",
"versions": [
{
"status": "affected",
"version": "1.1.5 and older"
}
]
}
]Related
nvd
nvd
CVE-2019-10289
2019-04-04 16:29:02
github
github
CSRF vulnerability in Jenkins Netsparker Enterprise Scan Plugin
2022-05-13 01:31:33
prion
prion
Cross site request forgery (csrf)
2019-04-04 16:29:00
osv
osv
CVE-2019-10289
2019-04-04 16:29:02
CSRF vulnerability in Jenkins Netsparker Enterprise Scan Plugin
2022-05-13 01:31:33
cve
cve
CVE-2019-10289
2019-04-04 16:29:02