2 matches found
CVE-2023-50779
Missing permission checks in Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified URL using an attacker-specified token...
CVE-2023-50779
Summary of CVE-2023-50779 : Jenkins PaaSLane Estimate Plugin, versions 1.0.4 and earlier, has missing permission checks in multiple HTTP endpoints. This flaw allows attackers with Overall/Read permission to connect to an attacker‑specified URL using an attacker‑specified token. The NVD entry docu...