Количество 2
Количество 2
CVE-2024-28155
почти 2 года назад
Jenkins AppSpider Plugin 1.0.16 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about available scan config names, engine group names, and client names.
CVSS3: 4.3
EPSS: Низкий
GHSA-xxv9-w5hm-328j
почти 2 года назад
Jenkins AppSpider Plugin missing permission checks
CVSS3: 4.3
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-28155 Jenkins AppSpider Plugin 1.0.16 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about available scan config names, engine group names, and client names. | CVSS3: 4.3 | 0% Низкий | почти 2 года назад |
| GHSA-xxv9-w5hm-328j Jenkins AppSpider Plugin missing permission checks | CVSS3: 4.3 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу
20