Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:18 p.m.7 views

CVE-2022-36886

A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...

4.3CVSS5.8AI score0.00362EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2023/07/12 6:30 p.m.29 views

Jenkins External Monitor Job Type Plugin XML external entity vulnerability

Jenkins External Monitor Job Type Plugin 206.v9a94ff0b4a10 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers with Item/Build permission to have Jenkins parse a crafted HTTP request with XML data that uses external entities for extracti...

6.5CVSS6.6AI score0.00507EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/07/12 6:30 p.m.19 views

GHSA-G4C3-4F3V-84X8 Jenkins External Monitor Job Type Plugin XML external entity vulnerability

Jenkins External Monitor Job Type Plugin 206.v9a94ff0b4a10 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers with Item/Build permission to have Jenkins parse a crafted HTTP request with XML data that uses external entities for extracti...

6.5CVSS6.3AI score0.00507EPSS
Exploits0References3
CVE
CVE
added 2023/07/12 3:52 p.m.58 views

CVE-2023-37942

The CVE-2023-37942 entry concerns Jenkins External Monitor Job Type Plugin, specifically 206.v9a_94ff0b_4a_10 and earlier. The root cause is that the XML parser was not configured to prevent XML External Entity (XXE) attacks. Impact as described: an attacker with Item/Build permission can supply ...

6.5CVSS6.4AI score0.00507EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2022/07/27 3:15 p.m.22 views

CVE-2022-36886

A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...

4.3CVSS0.00362EPSS
Exploits0References2
Prion
Prion
added 2022/07/27 3:15 p.m.15 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...

4.3CVSS4.6AI score0.00362EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/27 2:21 p.m.26 views

CVE-2022-36886

A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...

5.3AI score0.00362EPSS
Exploits0References2
CVE
CVE
added 2022/07/27 2:21 p.m.96 views

CVE-2022-36886

The CVE-2022-36886 entry concerns a CSRF vulnerability in Jenkins External Monitor Job Type Plugin versions 191.v363d0d1efdf8 and earlier, which allows attackers to create runs of an external job. Root cause: the plugin’s HTTP endpoint does not require POST requests, enabling CSRF. Affected compo...

4.3CVSS4.5AI score0.00362EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2022/07/27 2:21 p.m.49 views

CVE-2022-36886

A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...

4.3CVSS5AI score0.00362EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/07 12:0 a.m.22 views

Fedora 21 : jenkins-external-monitor-job-plugin-1.4-1.fc21 / etc (2014-15776)

This big update fixes several security vulnerabilities 1 as well as few packaging bugs. 1: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory +2014-10-01 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

5.5AI score
Exploits0References17
Rows per page
Query Builder