10 matches found
CVE-2022-36886
A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...
Jenkins External Monitor Job Type Plugin XML external entity vulnerability
Jenkins External Monitor Job Type Plugin 206.v9a94ff0b4a10 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers with Item/Build permission to have Jenkins parse a crafted HTTP request with XML data that uses external entities for extracti...
GHSA-G4C3-4F3V-84X8 Jenkins External Monitor Job Type Plugin XML external entity vulnerability
Jenkins External Monitor Job Type Plugin 206.v9a94ff0b4a10 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows attackers with Item/Build permission to have Jenkins parse a crafted HTTP request with XML data that uses external entities for extracti...
CVE-2023-37942
The CVE-2023-37942 entry concerns Jenkins External Monitor Job Type Plugin, specifically 206.v9a_94ff0b_4a_10 and earlier. The root cause is that the XML parser was not configured to prevent XML External Entity (XXE) attacks. Impact as described: an attacker with Item/Build permission can supply ...
CVE-2022-36886
A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...
Cross site request forgery (csrf)
A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...
CVE-2022-36886
A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...
CVE-2022-36886
The CVE-2022-36886 entry concerns a CSRF vulnerability in Jenkins External Monitor Job Type Plugin versions 191.v363d0d1efdf8 and earlier, which allows attackers to create runs of an external job. Root cause: the plugin’s HTTP endpoint does not require POST requests, enabling CSRF. Affected compo...
CVE-2022-36886
A cross-site request forgery CSRF vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job...
Fedora 21 : jenkins-external-monitor-job-plugin-1.4-1.fc21 / etc (2014-15776)
This big update fixes several security vulnerabilities 1 as well as few packaging bugs. 1: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory +2014-10-01 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...