CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Email Extension >> 2.94 Security Vulnerabilities

CVE-2023-32979

Jenkins Email Extension Plugin does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files in the email-templates/ directory in the Jenkins home directory on the controller file system.

CVSS Score

4.3

EPSS Score

0.001

Published

2023-05-16

CVE-2023-32980

A cross-site request forgery (CSRF) vulnerability in Jenkins Email Extension Plugin allows attackers to make another user stop watching an attacker-specified job.

CVSS Score

4.3

EPSS Score

0.002

Published

2023-05-16

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Email Extension >> 2.94 Security Vulnerabilities

Products

Pricing

Contact Us