CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.3CVSS6.7AI score0.00065EPSS

Exploits0

OSV•added 2023/07/12 6:30 p.m.•9 views

GHSA-5R5C-7RM4-MP4R Jenkins Rebuilder Plugin vulnerable to Cross Site Request Forgery

Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to rebuild a previous build...

4.3CVSS4.4AI score0.00065EPSS

Exploits0References3

Github Security Blog•added 2023/07/12 6:30 p.m.•34 views

Jenkins Rebuilder Plugin vulnerable to Cross Site Request Forgery

4.3CVSS6.7AI score0.00065EPSS

Exploits0References4Affected Software1

OSV•added 2023/07/12 4:15 p.m.•1 views

CVE-2023-37954

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.3CVSS5.7AI score0.00065EPSS

Exploits0References2

NVD•added 2023/07/12 4:15 p.m.•8 views

CVE-2023-37954

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.3CVSS0.00065EPSS

Exploits0References2

Prion•added 2023/07/12 4:15 p.m.•14 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.3CVSS4.5AI score0.00065EPSS

Exploits0References2Affected Software1

CVE•added 2023/07/12 3:52 p.m.•31 views

CVE-2023-37954

The CVE-2023-37954 issue is a CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a_0933a_e7d61 and earlier that allows an attacker to rebuild a previous build. Root cause noted in sources (e.g., GHSA advisory) is that the HTTP endpoint does not require POST, enabling CSRF. Affected versions are...

4.3CVSS4.5AI score0.00065EPSS

Exploits0References2Affected Software1

AlpineLinux•added 2023/07/12 3:52 p.m.•13 views

CVE-2023-37954

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.3CVSS6.8AI score0.00065EPSS

Exploits0References2

Vulnrichment•added 2023/07/12 3:52 p.m.•14 views

CVE-2023-37954

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

6.7AI score0.00065EPSS

Exploits0References2

Cvelist•added 2023/07/12 3:52 p.m.•9 views

CVE-2023-37954

A cross-site request forgery CSRF vulnerability in Jenkins Rebuilder Plugin 320.v5a0933ae7d61 and earlier allows attackers to rebuild a previous build...

4.8AI score0.00065EPSS

Exploits0References2

Prion•added 2023/05/30 8:15 a.m.•19 views

Cross site scripting

The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.3CVSS4.7AI score0.0014EPSS

Exploits3References2Affected Software1

Github Security Blog•added 2022/05/14 1:38 a.m.•14 views

Cross-site Scripting in Jenkins Rebuilder Plugin

A cross-site scripting vulnerability exists in Jenkins Rebuilder Plugin 1.28 and earlier in RebuildAction/BooleanParameterValue.jelly, RebuildAction/ExtendedChoiceParameterValue.jelly, RebuildAction/FileParameterValue.jelly, RebuildAction/LabelParameterValue.jelly,...

5.4CVSS1.8AI score0.00195EPSS

Exploits0References5Affected Software1

OSV•added 2022/05/14 1:38 a.m.•11 views

GHSA-7M8V-W6F9-Q2F9 Cross-site Scripting in Jenkins Rebuilder Plugin

5.4CVSS5.1AI score0.00195EPSS

Exploits0References4

CNVD•added 2019/01/11 12:0 a.m.•2 views

CloudBees Jenkins Rebuilder Plugin Cross-Site Scripting Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks . Rebuilder Plugin is to...

5.4CVSS6.2AI score0.00195EPSS

Exploits0References1

NVD•added 2019/01/09 11:29 p.m.•7 views

CVE-2018-1000415

5.4CVSS5.2AI score0.00195EPSS

Exploits0References2

OSV•added 2019/01/09 11:29 p.m.•8 views

CVE-2018-1000415

5.4CVSS5.9AI score

Exploits0References2

Prion•added 2019/01/09 11:29 p.m.•10 views

Cross site scripting