Lucene search
Veracode Vulnerability DatabaseVERACODE:25814HistoryJul 04, 2020 - 3:14 a.m.
Cross-site Request Forgery (CSRF)
2020-07-0403:14:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.001 Low
EPSS
Percentile
33.0%
jenkins is vulnerable to cross-site request forgery (CSRF). The vulnerability exists as it uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.
Related
cve
cve
CVE-2020-2160
2020-03-25 17:15:14
redhatcve
redhatcve
CVE-2020-2160
2021-08-15 11:34:50
osv
osv
Cross-Site Request Forgery in Jenkins
2022-05-24 17:12:40
BIT-jenkins-2020-2160
2024-03-06 11:06:01
CVE-2020-2160
2020-03-25 17:15:14
github
github
Cross-Site Request Forgery in Jenkins
2022-05-24 17:12:40
alpinelinux
alpinelinux
CVE-2020-2160
2020-03-25 17:15:14
prion
prion
Cross site request forgery (csrf)
2020-03-25 17:15:00
nvd
nvd
CVE-2020-2160
2020-03-25 17:15:14
cvelist
cvelist
CVE-2020-2160
2020-03-25 16:05:34
openvas
openvas
Jenkins < 2.228, < 2.204.6 LTS Multiple Vulnerabilities - Windows
2020-03-26 00:00:00
Jenkins < 2.228, < 2.204.6 LTS Multiple Vulnerabilities - Linux
2020-03-26 00:00:00
nessus
nessus
FreeBSD : jenkins -- multiple vulnerabilities (5bf6ed6d-9002-4f43-ad63-458f59e45384)
2020-03-26 00:00:00
Jenkins < (2.204.6 / 2.222.1) LTS / 2.228 Multiple Vulnerabilities
2020-04-02 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2020-03-25 00:00:00