CVE-2018-1000185

2018-06-05T20:29:00
ID CVE-2018-1000185
Type cve
Reporter cve@mitre.org
Modified 2018-07-18T19:13:00

Description

A server-side request forgery vulnerability exists in Jenkins GitHub Branch Source Plugin 2.3.4 and older in Endpoint.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request to a specified URL.