4 matches found
CVE-2022-25211
A missing permission check in Jenkins SWAMP Plugin 1.2.6 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server using attacker-specified credentials...
CVE-2022-25211
A missing permission check in Jenkins SWAMP Plugin 1.2.6 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server using attacker-specified credentials...
CVE-2022-25211
A missing permission check in Jenkins SWAMP Plugin 1.2.6 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server using attacker-specified credentials...
CVE-2022-25211
CVE-2022-25211 affects Jenkins SWAMP Plugin 1.2.6 and earlier. A missing permission check in a form-validation method lets attackers with Overall/Read connect to an attacker-specified URL using attacker-specified credentials, potentially capturing stored credentials. Exploitation details are not ...