cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-21665,https://securityvulnerability.io/vulnerability/CVE-2021-21665,,"A cross-site request forgery (CSRF) vulnerability in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.",Jenkins,Jenkins Xebialabs Xl Deploy Plugin,8,HIGH,0.0008800000068731606,false,,false,false,false,,,false,false,,2021-06-10T14:25:22.000Z,0
CVE-2021-21663,https://securityvulnerability.io/vulnerability/CVE-2021-21663,,"A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 7.5.8 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.",Jenkins,Jenkins Xebialabs Xl Deploy Plugin,4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2021-06-10T14:25:21.000Z,0
CVE-2021-21664,https://securityvulnerability.io/vulnerability/CVE-2021-21664,,"An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Generic Create permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.",Jenkins,Jenkins Xebialabs Xl Deploy Plugin,6.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2021-06-10T14:25:21.000Z,0
CVE-2021-21662,https://securityvulnerability.io/vulnerability/CVE-2021-21662,,A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentials ID of credentials stored in Jenkins.,Jenkins,Jenkins Xebialabs Xl Deploy Plugin,4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2021-06-10T14:25:20.000Z,0
CVE-2019-10304,https://securityvulnerability.io/vulnerability/CVE-2019-10304,,A cross-site request forgery vulnerability in Jenkins XebiaLabs XL Deploy Plugin in the Credential#doValidateUserNamePassword form validation method allows attackers to initiate a connection to an attacker-specified server.,Jenkins,Jenkins Xebialabs Xl Deploy Plugin,6.5,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2019-04-18T16:54:18.000Z,0
CVE-2019-10305,https://securityvulnerability.io/vulnerability/CVE-2019-10305,,A missing permission check in Jenkins XebiaLabs XL Deploy Plugin in the Credential#doValidateUserNamePassword form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.,Jenkins,Jenkins Xebialabs Xl Deploy Plugin,6.5,MEDIUM,0.0005499999970197678,false,,false,false,false,,,false,false,,2019-04-18T16:54:18.000Z,0