CVE-2021-21617

A cross-site request forgery CSRF vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations...

CSRF vulnerability in Jenkins Configuration Slicing Plugin

Jenkins Configuration Slicing Plugin 1.51 and earlier does not require POST requests for the form submission endpoint reconfiguring slices, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to apply different slice configurations to attacker-specifi...

GHSA-42MM-X828-56C7 CSRF vulnerability in Jenkins Configuration Slicing Plugin

Jenkins Configuration Slicing Plugin 1.51 and earlier does not require POST requests for the form submission endpoint reconfiguring slices, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to apply different slice configurations to attacker-specifi...

Jenkins Enterprise and Operations Center < 2.222.43.0.2 rev3 / 2.249.30.0.2 rev3 / 2.263.4.1 rev2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-02-24)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.222.x prior to 2.222.43.0.2 rev3, 2.249.x prior to 2.249.30.0.2 rev3, or 2.x prior to 2.263.4.1 rev2. It is, therefore, affected by multiple vulnerabilities, including the following: - A cross-sit...

CloudBees Jenkins Configuration Slicing Plugin Cross-Site Request Forgery Vulnerability

Jenkins Configuration Slicing is a Jenkins open source application plugin . Provides bulk configuration of selected project properties , including email , timers , discard old versions and Maven configuration. Jenkins Configuration Slicing Plugin 1.51 and earlier versions have a cross-site reques...

CVE-2021-21617

A cross-site request forgery CSRF vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations...

CVE-2021-21617

A cross-site request forgery CSRF vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations...

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations...

CVE-2021-21617

A cross-site request forgery CSRF vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations...

CVE-2021-21617

CVE-2021-21617 concerns a CSRF vulnerability in the Jenkins Configuration Slicing Plugin (versions 1.51 and earlier). The underlying issue is that the plugin’s form submission endpoint did not require POST, allowing an attacker to apply different slice configurations to attacker‑specified jobs. A...

PT-2021-14660 · Jenkins · Jenkins Configuration Slicing Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Configuration Slicing Plugin versions 1.51 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to apply different slice configurations to attacker-specified jobs. This issue arises because the for...

Jenkins Configuration Slicing 跨站请求伪造漏洞

Jenkins Configuration Slicing is a Jenkins open source application plugin . Provides bulk configuration of selected project properties , including email , timers , discard old versions and Maven configuration. Jenkins Configuration Slicing Plugin 1.51 and earlier versions have a cross-site reques...