6 matches found
CVE-2022-20613
A cross-site request forgery CSRF vulnerability was found in the Jenkins Mailer plugin. The form validation method does not require POST requests...
br.com.ingenieux.jenkins.plugins:codecommit-url-helper (=0.0.1), cf.pgmann.plugins:url-auth-sso (=1.0) +150 more potentially affected by CVE-2022-20613 via org.jenkins-ci.plugins:mailer (>=1.10 <=1.32.1)
org.jenkins-ci.plugins:mailer MAVEN version =1.10, =1.0.0, =1.9.2-beta, =1.14.0, =4.1.1, =2.30.2, =1.0.22, =1.3.0, =0.11.0, =0.13.0 - com.testinium.jenkins:testinium =1.0 and more Source cves: CVE-2022-20613 Source advisory: OSV:GHSA-85RQ-HP8X-GHJQ...
CVE-2022-20613
creationtimestamp| type| source ---|---|--- 2022-01-12 22:17:27+00:00| seen| https://t.me/cibsecurity/35362...
CVE-2022-20613
A cross-site request forgery CSRF vulnerability in Jenkins Mailer Plugin 391.ve4a38c1bcf4b and earlier allows attackers to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname...
CVE-2022-20613
A cross-site request forgery CSRF vulnerability in Jenkins Mailer Plugin 391.ve4a38c1bcf4b and earlier allows attackers to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname...
CVE-2022-20613
CVE-2022-20613 is a CSRF vulnerability in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier that allows an attacker to cause the Jenkins instance DNS to resolve an attacker-specified hostname. The connected documents confirm this CSRF issue but do not provide a patch version or specific miti...