Vulnerabilities > Jenkins > Convert TO Pipeline > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-02 | CVE-2023-28676 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Convert to Pipeline 1.0 A cross-site request forgery (CSRF) vulnerability in Jenkins Convert To Pipeline Plugin 1.0 and earlier allows attackers to create a Pipeline based on a Freestyle project, potentially leading to remote code execution (RCE). | 8.8 |