Lucene search
Veracode Vulnerability DatabaseVERACODE:31876HistoryAug 31, 2021 - 3:39 a.m.
Cross-Site Request Forgery (CSRF)
2021-08-3103:39:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
rundeck
csrf
vulnerability
plugin
installation
EPSS
0.001
Percentile
37.0%
rundeck is vulnerable to Cross-Site Request Forgery (CSRF). The attacks are possible because it does not validate CSRF tokens when installing plugins for endpoints.
Related
cvelist
cvelist
cnvd
cnvd
Rundeck Cross-Site Request Forgery Vulnerability
2021-09-01 00:00:00
prion
prion
Cross site request forgery (csrf)
2021-08-30 20:15:00
cve
cve
CVE-2021-39133
2021-08-30 20:15:07
github
github
Cross-Site Request Forgery (CSRF) can run untrusted code on Rundeck server
2021-09-01 18:26:48
osv
osv
CVE-2021-39133
2021-08-30 20:15:07
Cross-Site Request Forgery (CSRF) can run untrusted code on Rundeck server
2021-09-01 18:26:48
nvd
nvd
CVE-2021-39133
2021-08-30 20:15:07