PT-2025-44285

Name of the Vulnerable Software and Affected Versions Jenkins Themis Plugin versions 1.4.1 and earlier Description A cross-site request forgery CSRF issue exists in Jenkins Themis Plugin. This allows attackers to potentially connect to an HTTP server specified by the attacker. A CSRF attack...

EUVD-2022-43579

Malicious code in bioql PyPI...

EUVD-2021-31831

Malicious code in bioql PyPI...

CVE-2023-24433

Missing permission checks in Jenkins Orka by MacStadium Plugin 1.31 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

Jenkins Snow Commander Plugin 跨站请求伪造漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Snow Commander Plugin 2.0 and earlier versions contain a cross-site request forgery vulnerability that stems from a...