Filtered by vendor Jenkins Subscriptions
Filtered by product Urltrigger Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-1000606 1 Jenkins 1 Urltrigger 2024-09-17 N/A
A server-side request forgery vulnerability exists in Jenkins URLTrigger Plugin 0.41 and earlier in URLTrigger.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.
CVE-2021-21659 1 Jenkins 1 Urltrigger 2024-08-03 8.1 High
Jenkins URLTrigger Plugin 0.48 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.