2 matches found
CVE-2022-34204
A missing permission check in Jenkins EasyQA Plugin 1.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server...
CVE-2022-34204
The CVE-2022-34204 entry concerns Jenkins EasyQA Plugin (versions 1.0 and earlier). A missing permission check in the plugin’s form-validation path allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server, with CSRF also discussed in related advisories. Public...