19 matches found
EUVD-2023-2208
Malicious code in bioql PyPI...
EUVD-2023-2180
Malicious code in bioql PyPI...
jenkins-plugins: cloudbees-folder: Information disclosure in Folders Plugin
A flaw was found in the Jenkins Folders plugin. Affected versions of this plugin display an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available. This flaw exposes information about the Jenkins controller fi...
jenkins-plugins: cloudbees-folder: CSRF vulnerability in Folders Plugin
A flaw was found in the Jenkins Folders plugin. Affected versions of this plugin allow attackers to copy a view inside a folder...
CVE-2023-40337
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy a view inside a folder...
CVE-2023-40336
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders...
CVE-2023-40336
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders...
CVE-2023-40338
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system...
CVE-2023-40338
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system...
CVE-2023-40337
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy a view inside a folder...
CVE-2023-40337
CVE-2023-40337: Jenkins Folders Plugin CSRF vulnerability affecting version 6.846.v23698686f0f6 and earlier. A CSRF flaw allows an attacker to copy a view inside a folder. Impact details and CVSS data are provided in the initial document (CVSS v3.1 base score 4.3, MEDIUM). Connected documents con...
CVE-2023-40338
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system...
CVE-2023-40338
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier exposes the absolute path to a log file in the error message when accessing Scan Organization Folder Log without logs. This information disclosure vulnerability (CVE-2023-40338) has a confirmed fix in 6.848.ve3b_fd7839a_81 and newer; remediat...
CVE-2023-40337
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy a view inside a folder...
CVE-2023-40336
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders...
CVE-2023-40336
CVE-2023-40336 : Jenkins Folders Plugin (versions prior to 6.846.v23698686f0f6) is vulnerable to cross-site request forgery (CSRF) due to improper validation of user input. An authenticated attacker can exploit this to copy folders or views, potentially enabling execution of unsafe scripts or oth...
CVE-2023-40336
A cross-site request forgery CSRF vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders...
PT-2023-27395 · Jenkins · Jenkins Folders Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Folders Plugin versions 6.846.v23698686f0f6 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to copy a view inside a folder. This issue arises because the plugin does not require POST requests...
PT-2023-27396 · Jenkins · Jenkins Folders Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Folders Plugin versions 6.846.v23698686f0f6 and earlier Description: The issue concerns the Jenkins Folders Plugin, which displays an error message including the absolute path of a log file when attempting to access the Scan...