Max CVSS | 6.8 | Min CVSS | 6.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-15776 | 6.8 |
An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. The CSRF prevention token is stored in a request cookie that is not annotated as HttpOnly. An attacker with the ability to execute arbitrary code in a user's browser could impose an arbi
|
30-09-2022 - 03:39 | 18-09-2020 - 14:15 | |
CVE-2020-15776 | 6.8 |
An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. CSRF mitigation can be bypassed because the anti-CSRF token is in a cleartext cookie.
|
25-09-2020 - 16:59 | 18-09-2020 - 14:15 |