Maven package
org.jenkins-ci.plugins/external-monitor-job
pkg:maven/org.jenkins-ci.plugins/external-monitor-job
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-37942 | — | < 207.v98a | 207.v98a | Jul 12, 2023 | Jenkins External Monitor Job Type Plugin 206.v9a_94ff0b_4a_10 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. | ||
| CVE-2022-36886 | — | < 192.ve979ca_8b_3ccd | 192.ve979ca_8b_3ccd | Jul 27, 2022 | A cross-site request forgery (CSRF) vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job. |
- CVE-2023-37942Jul 12, 2023affected < 207.v98afixed 207.v98a
Jenkins External Monitor Job Type Plugin 206.v9a_94ff0b_4a_10 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
- CVE-2022-36886Jul 27, 2022affected < 192.ve979ca_8b_3ccdfixed 192.ve979ca_8b_3ccd
A cross-site request forgery (CSRF) vulnerability in Jenkins External Monitor Job Type Plugin 191.v363d0d1efdf8 and earlier allows attackers to create runs of an external job.