Vulnerabilities (CVE)

Filtered by vendor Jenkins Subscribe
Filtered by product Request Rename Or Delete
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34815 1 Jenkins 1 Request Rename Or Delete 2024-11-21 4.3 MEDIUM 4.3 MEDIUM
A cross-site request forgery (CSRF) vulnerability in Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier allows attackers to accept pending requests, thereby renaming or deleting jobs.
CVE-2022-34814 1 Jenkins 1 Request Rename Or Delete 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier does not correctly perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view an administrative configuration page listing pending requests.