Lucene search
+L

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-2071

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0062EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:5 a.m.13 views

CVE-2023-37956

A missing permission check in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials...

6.5CVSS6.6AI score0.0062EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2023/07/12 6:30 p.m.28 views

Jenkins Test Results Aggregator Plugin vulnerable to Cross Site Request Forgery

Jenkins Test Results Aggregator Plugin 1.2.13 and earlier does not perform a permission check in an HTTP endpoint implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password. Additionally,...

6.5CVSS6.6AI score0.00446EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2023/07/12 6:30 p.m.25 views

Jenkins Test Results Aggregator Plugin missing permission check

Jenkins Test Results Aggregator Plugin 1.2.13 and earlier does not perform a permission check in an HTTP endpoint implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password. Additionally,...

6.5CVSS6.6AI score0.0062EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/07/12 6:30 p.m.15 views

GHSA-8GC7-WHPH-RX5Q Jenkins Test Results Aggregator Plugin vulnerable to Cross Site Request Forgery

Jenkins Test Results Aggregator Plugin 1.2.13 and earlier does not perform a permission check in an HTTP endpoint implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password. Additionally,...

6.5CVSS6.4AI score0.00446EPSS
Exploits0References4
OSV
OSV
added 2023/07/12 6:30 p.m.16 views

GHSA-H656-VMRG-7RR6 Jenkins Test Results Aggregator Plugin missing permission check

Jenkins Test Results Aggregator Plugin 1.2.13 and earlier does not perform a permission check in an HTTP endpoint implementing form validation. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password. Additionally,...

6.5CVSS6.4AI score0.0062EPSS
Exploits0References3
NVD
NVD
added 2023/07/12 4:15 p.m.25 views

CVE-2023-37956

A missing permission check in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials...

6.5CVSS0.0062EPSS
Exploits0References2
OSV
OSV
added 2023/07/12 4:15 p.m.6 views

CVE-2023-37955

A cross-site request forgery CSRF vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

6.5CVSS5.7AI score0.00446EPSS
Exploits0References2
NVD
NVD
added 2023/07/12 4:15 p.m.19 views

CVE-2023-37955

A cross-site request forgery CSRF vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

6.5CVSS0.00446EPSS
Exploits0References2
Prion
Prion
added 2023/07/12 4:15 p.m.20 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

4.3CVSS6.4AI score0.00446EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/07/12 3:52 p.m.52 views

CVE-2023-37956

CVE-2023-37956 affects the Jenkins Test Results Aggregator Plugin,

6.5CVSS6.3AI score0.0062EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/12 3:52 p.m.27 views

CVE-2023-37955

A cross-site request forgery CSRF vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

6.6AI score0.00446EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/12 3:52 p.m.15 views

CVE-2023-37955

A cross-site request forgery CSRF vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

6.8AI score0.00446EPSS
Exploits0References2
CVE
CVE
added 2023/07/12 3:52 p.m.49 views

CVE-2023-37955

CVE-2023-37955 affects Jenkins Test Results Aggregator Plugin (versions 1.2.13 and earlier). The vulnerability is a CSRF flaw in an HTTP endpoint that allows an attacker with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials, and the endpoint doe...

6.5CVSS6.4AI score0.00446EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder