Jenkins Project Jenkins Folders Plugin vulnerabilities

CVE-2023-40336 [HIGH] CWE-352 CVE-2023-40336: A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy folders.

CVE-2023-40337 [MEDIUM] CWE-352 CVE-2023-40337: A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and A cross-site request forgery (CSRF) vulnerability in Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier allows attackers to copy a view inside a folder.

CVE-2023-40338 [MEDIUM] CWE-532 CVE-2023-40338: Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an ab Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.