25 matches found
CVE-2023-33003
A cross-site request forgery CSRF vulnerability in Jenkins Tag Profiler Plugin 0.2 and earlier allows attackers to reset profiler statistics...
CVE-2023-33003
CVE-2023-33003 refers to a CSRF vulnerability in Jenkins Tag Profiler Plugin version 0.2 and earlier. The cause is a missing permission check in an HTTP endpoint, allowing attackers with Overall/Read to reset profiler statistics, and the endpoint accepts non-POST requests. Several connected sourc...
Jenkins Tag Profiler Plugin 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Plugin is a software application. A security vulnerability...
PT-2023-24134 · Jenkins · Jenkins Tag Profiler Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Tag Profiler Plugin versions 0.2 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to reset profiler statistics. The issue arises because the plugin does not perform a permission check in an HTT...
Jenkins Tag Profiler Plugin 跨站请求伪造漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...