Max CVSS | 6.8 | Min CVSS | 6.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-16549 | 6.8 |
Jenkins Maven Release Plugin 0.16.1 and earlier does not configure the XML parser to prevent XML external entity (XXE) attacks, allowing man-in-the-middle attackers to have Jenkins parse crafted XML documents.
|
25-10-2023 - 18:16 | 17-12-2019 - 15:15 | |
CVE-2019-16550 | 6.8 |
A cross-site request forgery vulnerability in a connection test form method in Jenkins Maven Release Plugin 0.16.1 and earlier allows attackers to have Jenkins connect to an attacker specified web server and parse XML documents.
|
25-10-2023 - 18:16 | 17-12-2019 - 15:15 |