Fallos del tipo CWE-652

2 resultados

CVE-2023-28676HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Convert To Pipeline Plugin 1.0 and earlier allows attackers to create a PipelinEPSS 0.6%CVE-2023-25015MEDIUMClockwork Web before 0.1.2, when Rails before 5.2 is used, allows CSRF.EPSS 0.4%