cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-37958,https://securityvulnerability.io/vulnerability/CVE-2023-37958,CSRF Vulnerability in Jenkins Sumologic Publisher Plugin Affecting Multiple Versions,"A Cross-Site Request Forgery (CSRF) vulnerability exists in the Jenkins Sumologic Publisher Plugin (versions 2.2.1 and earlier), enabling attackers to manipulate requests and potentially connect to unauthorized URLs specified by the attacker. This vulnerability poses a significant security risk if exploited, as it may allow malicious actions to be performed in the context of an authenticated user.",Jenkins,Jenkins Sumologic Publisher Plugin,8.8,HIGH,0.0007200000109151006,false,,false,false,false,,,false,false,,2023-07-12T16:15:00.000Z,0
CVE-2023-37959,https://securityvulnerability.io/vulnerability/CVE-2023-37959,Missing Permission Check in Jenkins Sumologic Publisher Plugin Vulnerability,"A security flaw exists in the Jenkins Sumologic Publisher Plugin versions 2.2.1 and earlier due to a missing permission check. This vulnerability enables attackers with Overall/Read permission to establish connections to URLs specified by the attacker, potentially leading to unauthorized access. Users are advised to review the Jenkins Security Advisory and update to the latest version to mitigate this risk.",Jenkins,Jenkins Sumologic Publisher Plugin,6.5,MEDIUM,0.0004799999878741801,false,,false,false,false,,,false,false,,2023-07-12T16:15:00.000Z,0