CVE-2023-50774

A cross-site request forgery (CSRF) vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system.

Published Feb 3, 2026

https://github.com/advisories/GHSA-7ccg-jm7j-4f8v

CVSS ScoreHigh

8.1

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2023-50774

A cross-site request forgery (CSRF) vulnerability in Jenkins HTMLResource Plugin 1.02 and earlier allows attackers to delete arbitrary files on the Jenkins controller file system.

Published Feb 3, 2026

https://github.com/advisories/GHSA-7ccg-jm7j-4f8v

CVSS ScoreHigh

8.1


maven	org.jenkins-ci.plugins/htmlresource	1.02

Ecosystem	Package	Version


maven	org.jenkins-ci.plugins/htmlresource	1.02

Find vulnerabilities. Fix fast with AI.

CVE-2023-50774

CVE-2023-50774