Lucene search
JenkinsCVELIST:CVE-2023-39153HistoryJul 26, 2023 - 1:54 p.m.
CVE-2023-39153
2023-07-2613:54:53
jenkins
www.cve.org
cve-2023-39153
cross-site request forgery
jenkins
gitlab authentication plugin
attackers
user tricking
A cross-site request forgery (CSRF) vulnerability in Jenkins GitLab Authentication Plugin 1.17.1 and earlier allows attackers to trick users into logging in to the attacker’s account.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Jenkins GitLab Authentication Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThanOrEqual": "1.17.1",
"status": "affected",
"version": "0",
"versionType": "maven"
}
]
}
]Related
osv
osv
CVE-2023-39153
2023-07-26 14:15:10
CSRF vulnerability in GitLab Authentication Plugin
2023-07-26 15:30:57
prion
prion
Cross site request forgery (csrf)
2023-07-26 14:15:00
github
github
CSRF vulnerability in GitLab Authentication Plugin
2023-07-26 15:30:57
cve
cve
CVE-2023-39153
2023-07-26 14:15:10
nvd
nvd
CVE-2023-39153
2023-07-26 14:15:10
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2023-07-26)
2023-07-28 00:00:00