Vulnerabilities > Jenkins > Warnings > High

DATE CVE VULNERABILITY TITLE RISK
2020-09-23 CVE-2020-2280 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Warnings
A cross-site request forgery (CSRF) vulnerability in Jenkins Warnings Plugin 5.0.1 and earlier allows attackers to execute arbitrary code.
network
low complexity
jenkins CWE-352
8.8
2019-02-06 CVE-2019-1003007 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Warnings
A cross-site request forgery vulnerability exists in Jenkins Warnings Plugin 5.0.0 and earlier in src/main/java/hudson/plugins/warnings/GroovyParser.java that allows attackers to execute arbitrary code via a form validation HTTP endpoint.
network
low complexity
jenkins CWE-352
8.8