4 matches found
CVE-2022-34211
A cross-site request forgery CSRF vulnerability in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers to send an HTTP POST request to an attacker-specified URL...
CVE-2022-34211
CVE-2022-34211 describes a CSRF in the Jenkins vRealize Orchestrator Plugin (versions 3.0 and earlier) where an attacker can induce the plugin’s HTTP endpoint to perform a POST to a URL of the attacker’s choosing. The root cause is a lack of permission checks on the vulnerable HTTP endpoint, enab...
CVE-2022-34211
A cross-site request forgery CSRF vulnerability in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers to send an HTTP POST request to an attacker-specified URL...
CVE-2022-34211
A cross-site request forgery CSRF vulnerability in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers to send an HTTP POST request to an attacker-specified URL...