CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Appspider >> 1.0.16 Security Vulnerabilities

CVE-2026-48923

Jenkins AppSpider Plugin 1.0.17 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to connect to an attacker-specified URL.

CVSS Score

4.3

EPSS Score

0.0

Published

2026-05-27

CVE-2024-28155

Jenkins AppSpider Plugin 1.0.16 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about available scan config names, engine group names, and client names.

CVSS Score

4.3

EPSS Score

0.001

Published

2024-03-06

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Appspider >> 1.0.16 Security Vulnerabilities

Products

Pricing

Contact Us