cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-34794,https://securityvulnerability.io/vulnerability/CVE-2022-34794,Jenkins Recipe Plugin Vulnerability Exposes Sensitive Data to Unauthorized Access,"The Jenkins Recipe Plugin, specifically in version 1.2 and earlier, suffers from a critical oversight where missing permission checks allow users with Overall/Read access to send HTTP requests to any specified URL. This flaw leads to the ability to parse the response as XML, potentially exposing sensitive information and enabling further attacks on the system.",Jenkins,Jenkins Recipe Plugin,6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2022-06-30T17:47:29.000Z,0
CVE-2022-34793,https://securityvulnerability.io/vulnerability/CVE-2022-34793,XML External Entity Vulnerability in Jenkins Recipe Plugin,"The Jenkins Recipe Plugin versions up to 1.2 is susceptible to XML External Entity (XXE) attacks due to improper configuration of its XML parser. This oversight allows attackers to exploit the plugin, potentially leading to unauthorized access to sensitive information or manipulation of the server's processing. It is crucial for users of the affected versions to review the security advisory and apply the necessary updates to mitigate this risk.",Jenkins,Jenkins Recipe Plugin,8.8,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-06-30T17:47:24.000Z,0
CVE-2022-34792,https://securityvulnerability.io/vulnerability/CVE-2022-34792,Cross-Site Request Forgery in Jenkins Recipe Plugin by Jenkins,"A cross-site request forgery (CSRF) vulnerability exists in the Jenkins Recipe Plugin version 1.2 and earlier, allowing attackers to construct HTTP requests that can be sent to a user’s session. If exploited, an attacker could direct an authenticated user to interact with an attacker-controlled URL, leading to potential unauthorized actions. This vulnerability highlights the importance of implementing proper security measures to mitigate risks associated with CSRF attacks, especially in integrations involving plugins.",Jenkins,Jenkins Recipe Plugin,8,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-06-30T17:47:20.000Z,0