VYPR

Maven package

org.jenkins-ci.plugins/rrod

pkg:maven/org.jenkins-ci.plugins/rrod

Vulnerabilities (2)

  • CVE-2022-34815MedJun 30, 2022
    affected <= 1.1.0

    A cross-site request forgery (CSRF) vulnerability in Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier allows attackers to accept pending requests, thereby renaming or deleting jobs.

  • CVE-2022-34814MedJun 30, 2022
    affected <= 1.1.0

    Jenkins Request Rename Or Delete Plugin 1.1.0 and earlier does not correctly perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to view an administrative configuration page listing pending requests.