Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Checkmarx Plugin 2022.1.2 and earlier allows attackers to connect to an attacker-specified webserver using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jenkins 插件 跨站请求伪造漏洞
Vulnerability Description
Jenkins 插件是为Jenkins提供相应功能得插件。 Jenkins Checkmarx 插件 2022.1.2 及更早版本中存在安全漏洞,该漏洞允许攻击者使用通过另一种方法获取的攻击者指定的凭据 ID 连接到攻击者指定的 Web 服务器,从而捕获存储在 Jenkins 中的凭据。
CVSS Information
N/A
Vulnerability Type
N/A