Vulnerabilities (CVE)

Filtered by vendor Jenkins Subscribe
Filtered by product Test Results Aggregator
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37956 1 Jenkins 1 Test Results Aggregator 2024-11-21 N/A 6.5 MEDIUM
A missing permission check in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.
CVE-2023-37955 1 Jenkins 1 Test Results Aggregator 2024-11-21 N/A 6.5 MEDIUM
A cross-site request forgery (CSRF) vulnerability in Jenkins Test Results Aggregator Plugin 1.2.13 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials.