cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-25212,https://securityvulnerability.io/vulnerability/CVE-2022-25212,CSRF Vulnerability in Jenkins SWAMP Plugin by Jenkins,"A cross-site request forgery (CSRF) vulnerability in the Jenkins SWAMP Plugin allows malicious actors to send unauthorized requests that can connect to an attacker-specified web server using arbitrary credentials. This could potentially lead to data exposure or unauthorized actions performed on behalf of authenticated users. To mitigate the risk, it is crucial for users to update to the latest versions and implement security best practices.",Jenkins,Jenkins Swamp Plugin,8.8,HIGH,0.0007300000288523734,false,,false,false,false,,,false,false,,2022-02-15T16:11:51.000Z,0
CVE-2022-25211,https://securityvulnerability.io/vulnerability/CVE-2022-25211,Missing Permission Check in Jenkins SWAMP Plugin Affects Jenkins Software,"The Jenkins SWAMP Plugin prior to version 1.2.6 contains a vulnerability stemming from a lack of proper permission checks. This flaw permits attackers with Overall/Read permissions to establish connections to external web servers using credentials specified by the attacker. This can lead to unauthorized access, exposing sensitive data or triggering further attacks.",Jenkins,Jenkins Swamp Plugin,8.8,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-02-15T16:11:49.000Z,0