CVE-2019-1003079 (vmware_lab_manager_slaves)

Leave a reply

A missing permission check in Jenkins VMware Lab Manager Slaves Plugin in the LabManager.DescriptorImpl#doTestConnection form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.

View Full Alert

Related Posts

  • CVE-2011-1597

    OpenVAS Manager v2.0.3 allows plugin remote code execution. View Full Alert

  • CVE-2015-9297

    The events-manager plugin before 5.6 for WordPress has XSS. View Full Alert

  • CVE-2015-9298

    The events-manager plugin before 5.6 for WordPress has code injection. View Full Alert

Leave a Reply