cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-33003,https://securityvulnerability.io/vulnerability/CVE-2023-33003,Cross-Site Request Forgery Vulnerability in Jenkins Tag Profiler Plugin,"A cross-site request forgery (CSRF) vulnerability exists in the Jenkins Tag Profiler Plugin up to version 0.2, allowing attackers to manipulate profiler statistics by sending unauthorized requests. This leads to the potential misuse of profiler data, impacting the integrity of statistics recorded by Jenkins.",Jenkins,Jenkins Tag Profiler Plugin,4.3,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2023-05-16T17:15:00.000Z,0
CVE-2023-33004,https://securityvulnerability.io/vulnerability/CVE-2023-33004,Missing Permission Check in Jenkins Tag Profiler Plugin Affects Security,"A vulnerability exists in the Jenkins Tag Profiler Plugin versions 0.2 and earlier due to a missing permission verification process. This flaw enables attackers who possess Overall/Read access permissions to reset profiler statistics, potentially compromising the integrity of profiling data within Jenkins environments. Organizations using this plugin should assess their exposure and take necessary precautions to mitigate unauthorized statistics manipulation.",Jenkins,Jenkins Tag Profiler Plugin,4.3,MEDIUM,0.0004900000058114529,false,,false,false,false,,,false,false,,2023-05-16T17:15:00.000Z,0