Maven package
org.jenkins-ci.plugins/gearman-plugin
pkg:maven/org.jenkins-ci.plugins/gearman-plugin
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-1003083 | — | < 0.4.0 | 0.4.0 | Apr 4, 2019 | A missing permission check in Jenkins Gearman Plugin in the GearmanPluginConfig#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server. | ||
| CVE-2019-1003082 | — | < 0.4.0 | 0.4.0 | Apr 4, 2019 | A cross-site request forgery vulnerability in Jenkins Gearman Plugin in the GearmanPluginConfig#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server. |
- CVE-2019-1003083Apr 4, 2019affected < 0.4.0fixed 0.4.0
A missing permission check in Jenkins Gearman Plugin in the GearmanPluginConfig#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.
- CVE-2019-1003082Apr 4, 2019affected < 0.4.0fixed 0.4.0
A cross-site request forgery vulnerability in Jenkins Gearman Plugin in the GearmanPluginConfig#doTestConnection form validation method allows attackers to initiate a connection to an attacker-specified server.