cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-29051,https://securityvulnerability.io/vulnerability/CVE-2022-29051,Jenkins Publish Over FTP Plugin Vulnerability Affects Jenkins Products,"The Jenkins Publish Over FTP Plugin allows attackers with Overall/Read permission to exploit missing permission checks. This vulnerability enables them to connect to any specified FTP server using arbitrary credentials, potentially compromising sensitive data. Users are advised to upgrade to the latest version of the plugin to mitigate the risk.",Jenkins,Jenkins Publish Over Ftp Plugin,4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2022-04-12T19:50:52.000Z,0
CVE-2022-29050,https://securityvulnerability.io/vulnerability/CVE-2022-29050,Cross-Site Request Forgery in Jenkins Publish Over FTP Plugin,"The Jenkins Publish Over FTP Plugin prior to version 1.17 is susceptible to a cross-site request forgery (CSRF) vulnerability. This issue enables attackers to send unauthorized commands to the application, potentially allowing them to connect to an FTP server using credentials of their choosing. As attackers can leverage this vulnerability to initiate actions on behalf of unsuspecting users, it poses a significant risk to affected systems. Users are advised to upgrade to the latest version to mitigate this security risk.",Jenkins,Jenkins Publish Over Ftp Plugin,8.8,HIGH,0.0007300000288523734,false,,false,false,false,,,false,false,,2022-04-12T19:50:51.000Z,0
CVE-2019-1003058,https://securityvulnerability.io/vulnerability/CVE-2019-1003058,,A cross-site request forgery vulnerability in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpl#doLoginCheck method allows attackers to initiate a connection to an attacker-specified server.,Jenkins,Jenkins Ftp Publisher Plugin,6.5,MEDIUM,0.0016299999551847577,false,,false,false,false,,,false,false,,2019-04-04T15:38:48.000Z,0
CVE-2019-1003059,https://securityvulnerability.io/vulnerability/CVE-2019-1003059,,A missing permission check in Jenkins FTP publisher Plugin in the FTPPublisher.DescriptorImpl#doLoginCheck method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.,Jenkins,Jenkins Ftp Publisher Plugin,6.5,MEDIUM,0.0010900000343099236,false,,false,false,false,,,false,false,,2019-04-04T15:38:48.000Z,0
CVE-2019-1003055,https://securityvulnerability.io/vulnerability/CVE-2019-1003055,,Jenkins FTP publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.,Jenkins,Jenkins Ftp Publisher Plugin,8.8,HIGH,0.0031799999997019768,false,,false,false,false,,,false,false,,2019-04-04T15:38:47.000Z,0