Lucene search
K

7 matches found

CVE
CVE
added 2026/06/24 1:20 p.m.12 views

CVE-2026-57290

A CSRF vulnerability affects Jenkins Priority Sorter Plugin 936.v2c01c6b_84449 and earlier, allowing attackers to overwrite the global job priority configuration. Affected version range includes 936.v2c01c6b_84449 and earlier; no exploitation details are provided in the available documents. Remed...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/24 1:20 p.m.32 views

CVE-2026-57290

A cross-site request forgery CSRF vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b84449 and earlier allows attackers to overwrite the global job priority configuration...

0.00152EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/24 1:20 p.m.5 views

CVE-2026-57290

A cross-site request forgery CSRF vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b84449 and earlier allows attackers to overwrite the global job priority configuration...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References2
Imperva Blog
Imperva Blog
added 2022/02/16 11:47 a.m.19 views

Imperva Mitigates Massive Bot Attack of 400 Million Requests

Imperva Advanced Bot Protection detected and stopped the largest bot attack in Imperva history. The web scraping attack targeted a global job listing site with operations in six countries. The attacker used a large-scale botnet, generating no less than 400 million bot requests from nearly 400,000...

6.8AI score
Exploits0
OSV
OSV
added 2021/04/21 3:15 p.m.30 views

CVE-2021-21643

Jenkins Config File Provider Plugin 3.7.0 and earlier does not correctly perform permission checks in several HTTP endpoints, allowing attackers with global Job/Configure permission to enumerate system-scoped credentials IDs of credentials stored in Jenkins...

6.5CVSS6.2AI score
Exploits0References2
NVD
NVD
added 2021/04/21 3:15 p.m.30 views

CVE-2021-21643

Jenkins Config File Provider Plugin 3.7.0 and earlier does not correctly perform permission checks in several HTTP endpoints, allowing attackers with global Job/Configure permission to enumerate system-scoped credentials IDs of credentials stored in Jenkins...

6.5CVSS0.01082EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/04/21 2:20 p.m.32 views

CVE-2021-21643

Jenkins Config File Provider Plugin 3.7.0 and earlier does not correctly perform permission checks in several HTTP endpoints, allowing attackers with global Job/Configure permission to enumerate system-scoped credentials IDs of credentials stored in Jenkins...

6.9AI score0.01082EPSS
Exploits0References2
Rows per page
Query Builder