CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/01/09 12:37 p.m.•8 views

CVE-2023-50774

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.1CVSS6.8AI score0.00493EPSS

Exploits0References1

Veracode•added 2023/12/18 6:6 a.m.•16 views

Cross-Site Request Forgery (CSRF)

htmlresource is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists because the library does not require POST requests for an HTTP endpoint, which allows an attacker to delete arbitrary files on the Jenkins controller file system...

8.1CVSS7.1AI score0.00493EPSS

Exploits0References3Affected Software1

OSV•added 2023/12/13 6:31 p.m.•16 views

GHSA-7CCG-JM7J-4F8V Cross-site request forgery vulnerability in Jenkins HTMLResource Plugin

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.1CVSS8.1AI score0.00493EPSS

Exploits0References3

Github Security Blog•added 2023/12/13 6:31 p.m.•24 views

Cross-site request forgery vulnerability in Jenkins HTMLResource Plugin

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.1CVSS7.1AI score0.00493EPSS

Exploits0References4Affected Software1

OSV•added 2023/12/13 6:15 p.m.•20 views

CVE-2023-50774

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.1CVSS8.2AI score

Exploits0References2

NVD•added 2023/12/13 6:15 p.m.•17 views

CVE-2023-50774

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.1CVSS0.00493EPSS

Exploits0References2

Prion•added 2023/12/13 6:15 p.m.•20 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

5.8CVSS7.1AI score0.00493EPSS

Exploits0References2Affected Software1

CVE•added 2023/12/13 5:30 p.m.•56 views

CVE-2023-50774

CVE-2023-50774 refers to a CSRF vulnerability in Jenkins HTMLResource Plugin (versions 1.02 and earlier) that allows attackers to delete arbitrary files on the Jenkins controller filesystem. Multiple connected sources (Red Hat advisory, Veracode entry, OSV/NVD/Nessus plugin listings, and CVE aggr...

8.1CVSS8AI score0.00493EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/12/13 5:30 p.m.•17 views

CVE-2023-50774

A cross-site request forgery CSRF vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system...

8.3AI score0.00493EPSS

Exploits0References2

CNNVD•added 2023/12/13 12:0 a.m.•3 views

Jenkins HTMLResource Plugin Security Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

8.1CVSS6.8AI score0.00493EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by