2 results (0.003 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

A missing permission check in Jenkins Tag Profiler Plugin 0.2 and earlier allows attackers with Overall/Read permission to reset profiler statistics. • https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3083 • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

A cross-site request forgery (CSRF) vulnerability in Jenkins Tag Profiler Plugin 0.2 and earlier allows attackers to reset profiler statistics. • https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3083 • CWE-352: Cross-Site Request Forgery (CSRF) •