Количество 4
Количество 4
CVE-2023-35141
In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu.
CVE-2023-35141
In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu.
CVE-2023-35141
In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests a ...
GHSA-98fp-r22g-wpj7
Jenkins CSRF protection bypass vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-35141 In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu. | CVSS3: 8 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-35141 In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu. | CVSS3: 8 | 0% Низкий | больше 2 лет назад |
| CVE-2023-35141 In Jenkins 2.399 and earlier, LTS 2.387.3 and earlier, POST requests a ... | CVSS3: 8 | 0% Низкий | больше 2 лет назад |
| GHSA-98fp-r22g-wpj7 Jenkins CSRF protection bypass vulnerability | CVSS3: 8 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу