CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Veracode•added 2023/07/29 10:40 a.m.•14 views

Cross-Site Request Forgery (CSRF)

bazaar is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists because the library does not require POST requests for an HTTP endpoint, which allows an attacker to delete previously created Bazaar SCM tags...

5.3CVSS6.8AI score0.00255EPSS

Exploits0References3Affected Software1

Github Security Blog•added 2023/07/26 3:30 p.m.•26 views

CSRF vulnerability in Bazaar Plugin

Jenkins Bazaar Plugin 1.22 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery CSRF vulnerability. This vulnerability allows attackers to delete previously created Bazaar SCM tags...

5.3CVSS5.4AI score0.00255EPSS

Exploits0References4Affected Software1

NVD•added 2023/07/26 2:15 p.m.•11 views

CVE-2023-39156

A cross-site request forgery CSRF vulnerability in Jenkins Bazaar Plugin 1.22 and earlier allows attackers to delete previously created Bazaar SCM tags...

5.3CVSS5.9AI score0.00255EPSS

Exploits0References2

Prion•added 2023/07/26 2:15 p.m.•25 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Bazaar Plugin 1.22 and earlier allows attackers to delete previously created Bazaar SCM tags...

5CVSS5.2AI score0.00255EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/26 1:54 p.m.•8 views

CVE-2023-39156

A cross-site request forgery CSRF vulnerability in Jenkins Bazaar Plugin 1.22 and earlier allows attackers to delete previously created Bazaar SCM tags...

6.7AI score0.00255EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by