cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-10368,https://securityvulnerability.io/vulnerability/CVE-2019-10368,,"A cross-site request forgery vulnerability in Jenkins JClouds Plugin 2.14 and earlier in BlobStoreProfile.DescriptorImpl#doTestConnection and JCloudsCloud.DescriptorImpl#doTestConnection allowed users with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.",Jenkins,Jenkins Jclouds Plugin,8.8,HIGH,0.003100000089034438,false,,false,false,false,,,false,false,,2019-08-07T14:20:23.000Z,0
CVE-2019-10369,https://securityvulnerability.io/vulnerability/CVE-2019-10369,,"A missing permission check in Jenkins JClouds Plugin 2.14 and earlier in BlobStoreProfile.DescriptorImpl#doTestConnection and JCloudsCloud.DescriptorImpl#doTestConnection allowed users with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.",Jenkins,Jenkins Jclouds Plugin,6.5,MEDIUM,0.0016400000313296914,false,,false,false,false,,,false,false,,2019-08-07T14:20:23.000Z,0