3 matches found
CVE-2022-36916
A cross-site request forgery CSRF vulnerability in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers to request a manual backup...
CVE-2022-36916
A cross-site request forgery CSRF vulnerability in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers to request a manual backup...
CVE-2022-36916
CVE-2022-36916 is a CSRF vulnerability in Jenkins Google Cloud Backup Plugin versions 0.6 and earlier. The issue stems from a missing permission check in an HTTP endpoint, which also does not require POST requests, enabling an attacker to trigger a manual backup. The NVD entry assigns a high impa...