Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2022-34814
- EPSS 0.62%
- Published 30.06.2022 18:15:15
- Last modified 21.11.2024 07:10:14
Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier does not correctly perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view an administrative configuration page listing pending requests.
4.3
CVE-2022-34815
- EPSS 0.08%
- Published 30.06.2022 18:15:15
- Last modified 21.11.2024 07:10:14
A cross-site request forgery (CSRF) vulnerability in Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier allows attackers to accept pending requests, thereby renaming or deleting jobs.
1