Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/23 3:37 a.m.10 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS6.7AI score0.00362EPSS
Exploits0References1
nvd
nvd
added 2023/04/02 9:15 p.m.24 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS8.7AI score0.00362EPSS
Exploits0References1
cve
cve
added 2023/03/23 11:26 a.m.246 views

CVE-2023-28674

CVE-2023-28674 corresponds to a CSRF vulnerability in the Jenkins OctoPerf Load Testing Plugin (versions 4.5.2 and earlier). The issue arises from missing permission checks across several HTTP endpoints, allowing an attacker with Overall/Read permission to connect to a configured Octoperf server ...

8.8CVSS8.5AI score0.00362EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2023/03/23 11:26 a.m.32 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.9AI score0.00362EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2023/03/23 11:26 a.m.20 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS8.4AI score0.00362EPSS
Exploits0References1
Rows per page
Query Builder