Threadfix@* Security Vulnerabilities and Issues — Threadfix@* CVE List

Lucene search

JenkinsThreadfix*

2 matches found

CVE•added 2022/06/23 5:15 p.m.•70 views

CVE-2022-34209

A cross-site request forgery (CSRF) vulnerability in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers to connect to an attacker-specified URL.

6.5CVSS6.3AI score0.00087EPSS

CVE•added 2022/06/23 5:15 p.m.•70 views

CVE-2022-34210

A missing permission check in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.

6.5CVSS6.2AI score0.0042EPSS