3 matches found
CVE-2022-25206
A missing check in Jenkins dbCharts Plugin 0.5.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified database via JDBC using attacker-specified credentials...
CVE-2022-25206
A missing check in Jenkins dbCharts Plugin 0.5.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified database via JDBC using attacker-specified credentials...
CVE-2022-25206
CVE-2022-25206 affects Jenkins dbCharts Plugin 0.5.2 and earlier. The root cause is a missing permission check in a form-validation method, which allows users with Overall/Read permission to connect to an attacker-specified database via JDBC using attacker-specified credentials. The vulnerability...