Filtered by vendor Jenkins Subscriptions
Filtered by product Bearychat Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-24459 1 Jenkins 1 Bearychat 2023-10-24 6.5 Medium
A missing permission check in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.
CVE-2023-24458 1 Jenkins 1 Bearychat 2023-10-24 8.8 High
A cross-site request forgery (CSRF) vulnerability in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified URL.