14 matches found
EUVD-2022-7371
Malicious code in bioql PyPI...
CVE-2022-45394
A missing permission check in Jenkins Delete log Plugin 1.0 and earlier allows attackers with Item/Read permission to delete build logs...
GHSA-HW4F-G7WH-XP52 Cross-Site Request Forgery in Jenkins Delete log Plugin
A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...
GHSA-J874-47XX-9XFG Missing permission check in Jenkins Delete log Plugin
A missing permission check in Jenkins Delete log Plugin 1.0 and earlier allows attackers with Item/Read permission to delete build logs. As of publication of this advisory, there is no fix...
Cross-Site Request Forgery in Jenkins Delete log Plugin
A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...
CVE-2022-45393
A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...
CVE-2022-45393
A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...
Cross site request forgery (csrf)
A cross-site request forgery CSRF vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs...
Information disclosure
A missing permission check in Jenkins Delete log Plugin 1.0 and earlier allows attackers with Item/Read permission to delete build logs...
CVE-2022-45394
CVE-2022-45394 is a vulnerability in Jenkins Delete log Plugin (1.0 and earlier) caused by a missing permission check. This allows attackers with Item/Read permission to delete build logs. Base CVSS v3.1 score is 4.3 (Medium); exploitation is outlined in the vulnerability record, but no exploit d...
CVE-2022-45393
CVE-2022-45393 : A cross-site request forgery (CSRF) vulnerability in the Jenkins Delete log Plugin (version 1.0 and earlier) allows attackers to delete build logs. The core issue is an insufficient privilege check enabling CSRF to trigger log deletions. Affected product: Jenkins Delete log Plugi...
PT-2022-27495 · Jenkins · Jenkins Delete Log Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Delete log Plugin versions 1.0 and earlier Description: A cross-site request forgery CSRF issue allows attackers to delete build logs. Recommendations: For Jenkins Delete log Plugin versions 1.0 and earlier, consider disabling the...
CVE-2022-45394
A missing permission check in Jenkins Delete log Plugin 1.0 and earlier allows attackers with Item/Read permission to delete build logs...
PT-2022-27496 · Jenkins · Jenkins Delete Log Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Delete log Plugin versions 1.0 and earlier Description: A missing permission check in the Jenkins Delete log Plugin allows attackers with Item/Read permission to delete build logs. There is no information about real-world incidents...