Lucene search
GitHub Advisory DatabaseGHSA-HW4F-G7WH-XP52HistoryNov 16, 2022 - 12:00 p.m.
Cross-Site Request Forgery in Jenkins Delete log Plugin
2022-11-1612:00:23
CWE-352
GitHub Advisory Database
github.com
11
jenkins security issue
csrf vulnerability
delete log plugin
build logs
software
3.5 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
21.3%
A cross-site request forgery (CSRF) vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs.
Affected configurations
Node
activity_log_teamactivity_log_\(wordpress_plugin\)Range≤1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| org.jenkins-ci.plugins:delete-log-plugin | le | 1.0 |
Related
osv
osv
Cross-Site Request Forgery in Jenkins Delete log Plugin
2022-11-16 12:00:23
nvd
nvd
CVE-2022-45393
2022-11-15 20:15:13
prion
prion
Cross site request forgery (csrf)
2022-11-15 20:15:00
cve
cve
CVE-2022-45393
2022-11-15 20:15:13
cvelist
cvelist
CVE-2022-45393
2022-11-15 00:00:00
nessus
nessus
3.5 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
21.3%
Related for GHSA-HW4F-G7WH-XP52