Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

OSV
OSVadded 2025/03/07 8:55 p.m.4 views

BIT-JENKINS-2025-27624

A cross-site request forgery CSRF vulnerability in Jenkins 2.499 and earlier, LTS 2.492.1 and earlier allows attackers to have users toggle their collapsed/expanded status of sidepanel widgets e.g., Build Queue and Build Executor Status widgets...

5.4CVSS6.7AI score0.0041EPSS
Exploits0References2
CVE
CVEadded 2025/03/05 10:33 p.m.110 views

CVE-2025-27624

CVE-2025-27624 : Jenkins versions 2.499 and earlier, and LTS 2.492.1 and earlier, are affected by a CSRF vulnerability that lets an attacker toggle the collapsed/expanded state of sidepanel widgets (e.g., Build Queue, Build Executor Status) in affected users. The issue arises from the HTTP endpoi...

5.4CVSS7.1AI score0.0041EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder