Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:5 a.m.9 views

CVE-2023-37952

A cross-site request forgery CSRF vulnerability in Jenkins mabl Plugin 0.0.46 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.6AI score0.00437EPSS
Exploits0
NVD
NVD
added 2023/07/12 4:15 p.m.33 views

CVE-2023-37952

A cross-site request forgery CSRF vulnerability in Jenkins mabl Plugin 0.0.46 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS0.00437EPSS
Exploits0References2
CVE
CVE
added 2023/07/12 3:52 p.m.65 views

CVE-2023-37952

CVE-2023-37952 affects Jenkins mabl Plugin versions 0.0.46 and earlier. The root cause is missing permission checks on several HTTP endpoints, allowing CSRF by attackers who can cause the plugin to connect to an attacker-specified URL using attacker-specified credentials IDs, thereby exposing cre...

6.5CVSS6.4AI score0.00437EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/12 3:52 p.m.35 views

CVE-2023-37952

A cross-site request forgery CSRF vulnerability in Jenkins mabl Plugin 0.0.46 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.6AI score0.00437EPSS
Exploits0References2
Rows per page
Query Builder