6 matches found
CVE-2022-30969
A cross-site request forgery CSRF vulnerability in Jenkins Autocomplete Parameter Plugin 1.1 and earlier allows attackers to execute arbitrary code without sandbox protection if the victim is an administrator...
Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.13 / 2.332.3.4 Multiple Vulnerabilities (CloudBees Security Advisory 2022-05-17)
The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.13, or 2.x prior to 2.332.3.4. It is, therefore, affected by multiple vulnerabilities, including the following: - Jenkins Rundeck Plugin 3.6.10 and earlier does not...
CVE-2022-30969
creationtimestamp| type| source ---|---|--- 2022-05-17 18:27:48+00:00| seen| https://t.me/cibsecurity/42819...
CVE-2022-30969
A cross-site request forgery CSRF vulnerability in Jenkins Autocomplete Parameter Plugin 1.1 and earlier allows attackers to execute arbitrary code without sandbox protection if the victim is an administrator...
CVE-2022-30969
A cross-site request forgery CSRF vulnerability in Jenkins Autocomplete Parameter Plugin 1.1 and earlier allows attackers to execute arbitrary code without sandbox protection if the victim is an administrator...
CVE-2022-30969
CVE-2022-30969 affects Jenkins Autocomplete Parameter Plugin (versions 1.1 and earlier). The issue is a CSRF flaw that can allow an administrator’s session to run arbitrary code without sandbox protection when visiting a malicious page. Impact per available data: high, with CVSS3.1 base score 8.8...