Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.10 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS6.7AI score0.00362EPSS
Exploits0References1
NVD
NVD
added 2023/04/02 9:15 p.m.24 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS8.7AI score0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/23 11:26 a.m.32 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.9AI score0.00362EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2023/03/23 11:26 a.m.28 views

CVE-2023-28674

A cross-site request forgery CSRF vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously configured Octoperf server using attacker-specified credentials...

8.8CVSS8.4AI score0.00362EPSS
Exploits0References1
CVE
CVE
added 2023/03/23 11:26 a.m.247 views

CVE-2023-28674

CVE-2023-28674 corresponds to a CSRF vulnerability in the Jenkins OctoPerf Load Testing Plugin (versions 4.5.2 and earlier). The issue arises from missing permission checks across several HTTP endpoints, allowing an attacker with Overall/Read permission to connect to a configured Octoperf server ...

8.8CVSS8.5AI score0.00362EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder