3 matches found
CVE-2023-6149
creationtimestamp| type| source ---|---|--- 2024-01-09 10:26:24+00:00| seen| https://t.me/ctinow/164914 2024-01-26 08:36:19+00:00| seen| https://t.me/ctinow/174050 2025-06-16 20:37:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18528...
CVE-2023-6149
Qualys Jenkins Plugin for WAS (versions prior to and including 2.0.11) is affected by a privilege-check flaw during the connectivity check to Qualys Cloud Services. This lack of permission checking allows any user with login access to configure or edit jobs to route or modify requests to a rogue ...
CVE-2023-6149 Possible XXE vulnerability in Jenkins Plugin for Qualys Web Application Security
Qualys Jenkins Plugin for WAS prior to version and including 2.0.11 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs to utilize t...