CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40469

Name of the Vulnerable Software and Affected Versions Warpgate versions prior to 0.23.3 Description The SSO flow fails to validate the state parameter. This allows an attacker to trick a user into logging into an account controlled by the attacker, which could lead the user to perform sensitive...

5.8CVSS5.8AI score0.00015EPSS

Exploits1References4

OSV•added 2025/12/12 11:23 a.m.•4 views

BIT-JENKINS-2025-67639

A cross-site request forgery CSRF vulnerability in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers to trick users into logging in to the attacker's account...

3.5CVSS6.7AI score0.00041EPSS

Exploits0References2

Github Security Blog•added 2025/12/10 6:30 p.m.•5 views

Jenkins has a CSRF vulnerability on the login form

A cross-site request forgery CSRF vulnerability in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers to trick users into logging in to the attacker's account...

3.5CVSS6.8AI score0.00041EPSS

Exploits0References4Affected Software1