Lucene search
+L

24 matches found

Cvelist
Cvelist
added 2019/10/16 1:0 p.m.27 views

CVE-2019-10437

A cross-site request forgery vulnerability in Jenkins CRX Content Package Deployer Plugin 1.8.1 and earlier allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.7AI score0.00836EPSS
Exploits0References1
CVE
CVE
added 2019/10/16 1:0 p.m.74 views

CVE-2019-10437

The CVE-2019-10437 vulnerability affects Jenkins CRX Content Package Deployer Plugin versions 1.8.1 and earlier. It is a cross-site request forgery (CSRF) issue in which an attacker can cause a Jenkins instance to connect to an attacker-specified URL using credentials IDs obtained through another...

8.8CVSS8.5AI score0.00836EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/10/16 12:0 a.m.4 views

PT-2019-11833 · Jenkins · Jenkins Crx Content Package Deployer Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins CRX Content Package Deployer Plugin versions 1.8.1 and earlier Jenkins CRX Content Package Deployer Plugin versions prior to 1.9 Description: A missing permission check in the Jenkins CRX Content Package Deployer Plugin in various...

4.3CVSS4.4AI score0.00664EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2019/10/16 12:0 a.m.6 views

PT-2019-11832 · Jenkins · Jenkins Crx Content Package Deployer Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins CRX Content Package Deployer Plugin versions 1.8.1 and earlier Jenkins CRX Content Package Deployer Plugin versions prior to 1.9 Description: A missing permission check in the Jenkins CRX Content Package Deployer Plugin allowed...

6.5CVSS6.3AI score0.01034EPSS
Exploits0References7
Rows per page
Query Builder