CVE-2018-1000014
CVSS v3.0
8.8 (High)
CVSS v2.0
6.8 (Medium)
EPSS
0.08 % (34th)
Affected Products
1
Advisories
1
Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings displayed to all users on the current Jenkins instance if the victim is a Jenkins administrator.
Weaknesses
- CWE-352
- Cross-Site Request Forgery (CSRF)
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2018-01-23 14:29:00
(6 years ago) - Updated Date
-
2018-02-07 12:22:17
(6 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...