Jul 27, 2022 · Additionally, this webhook endpoint does not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability. Git Plugin ...

Aug 16, 2023 · CSRF vulnerability in Folders Plugin ... Description: Folders Plugin 6.846.v23698686f0f6 and earlier does not require POST requests for an HTTP ...

Dec 13, 2023 · Additionally, these form validation methods do not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability.

Jan 12, 2022 · Descriptions · CSRF vulnerability in build triggers · CSRF vulnerability and missing permission checks in Mailer Plugin · Stored XSS vulnerability ...

CSRF vulnerabilities are a risk even if attackers have no direct access to Jenkins. ... If you find a vulnerability in Jenkins, please report it in the issue ...

Feb 15, 2023 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control affected fields. Email Extension ...

Mar 6, 2024 · Additionally, this endpoint does not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability. As of publication of ...

Apr 12, 2023 · CSRF vulnerability and missing permission check in Report Portal Plugin ... CSRF vulnerability in Lucene-Search Plugin. SECURITY-3013 / CVE-2023 ...

Jan 24, 2024 · Arbitrary file read vulnerability through the CLI can lead to RCE · Remote code execution via Resource Root URLs (Variant 1) · Remote code ...

Feb 15, 2022 · CSRF vulnerability and missing permission check in autonomiq Plugin ... Description: autonomiq Plugin 1.15 and earlier does not perform a ...