4 matches found
CVE-2023-2195
A cross-site request forgery CSRF vulnerability in Jenkins Code Dx Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL...
CVE-2023-2195 CSRF vulnerability and missing permission checks in Code Dx Plugin
A cross-site request forgery CSRF vulnerability in Jenkins Code Dx Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL...
CVE-2023-2195
The CVE-2023-2195 entry concerns the Jenkins Code Dx Plugin (versions 3.1.0 and earlier) with a CSRF vulnerability. Affected functionality allows attackers with read permission to connect to an attacker‑specified URL due to missing or insufficient permission checks on several HTTP endpoints, and ...
CVE-2023-2195
A cross-site request forgery CSRF vulnerability in Jenkins Code Dx Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL...