pkg:maven/org.jenkins-ci.plugins/threadfix
Type
maven
Namespace
org.jenkins-ci.plugins
Name
threadfix
Known advisories, vulnerabilities and fixes for org.jenkins-ci.plugins/threadfix package.
Moderate
2
Medium
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 1.5.4 |
CVE-2022-34209
CVE-2022-34210 |
JENKINS:SECURITY-2249 | CSRF vulnerability and missing permission check in `threadfix` | medium |
2022-06-22T00:00:00
(2 years ago) |
|
Affected | <= 1.5.4 |
CVE-2022-34210
|
MAVEN:GHSA-77VQ-4J66-46M5 | Missing permission check in Jenkins ThreadFix Plugin | moderate |
2022-06-24T00:00:32
(2 years ago) |
|
Affected | <= 1.5.4 |
CVE-2022-34209
|
MAVEN:GHSA-RQ99-93C5-33F6 | Cross-Site Request Forgery in Jenkins ThreadFix Plugin | moderate |
2022-06-24T00:00:32
(2 years ago) |