CVE-2023-33004
Cross-Site Request Forgery (CSRF) in maven/org.jenkins-ci.plugins/tag-profiler
Identifiers
GHSA-cpc3-gm2x-mrvp, CVE-2023-33004
Package Slug
maven/org.jenkins-ci.plugins/tag-profiler
Vulnerability
Cross-Site Request Forgery (CSRF)
Description
A missing permission check in Jenkins Tag Profiler Plugin 0.2 and earlier allows attackers with Overall/Read permission to reset profiler statistics.
Affected Versions
All versions up to 0.2
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-05-17
| source |