Lucene search
GoogleOSV:CVE-2019-10300HistoryApr 18, 2019 - 5:29 p.m.
CVE-2019-10300
2019-04-1817:29:00
Google
osv.dev
1
A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Related
cve
cve
CVE-2019-10300
2019-04-18 17:29:00
talos
talos
Jenkins GitLab Plugin Information Disclosure Vulnerability
2019-05-06 00:00:00
nvd
nvd
CVE-2019-10300
2019-04-18 17:29:00
prion
prion
Cross site request forgery (csrf)
2019-04-18 17:29:00
osv
osv
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
2022-05-24 16:43:53
checkpoint_advisories
checkpoint_advisories
Jenkins GitLab Plugin Information Disclosure (CVE-2019-10300)
2019-05-07 00:00:00
cvelist
cvelist
CVE-2019-10300
2019-04-18 16:54:18
github
github
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
2022-05-24 16:43:53