Jenkins RapidDeploy Plugin Cross-Site Request Forgery plugin

2022-05-2417:03:48

Google

osv.dev

0.001 Low

EPSS

Percentile

33.2%

JSON

A cross-site request forgery vulnerability in Jenkins RapidDeploy Plugin 4.1 and earlier allows attackers to connect to an attacker-specified web server.

CPENameOperatorVersion
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.0
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.10
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.7
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.9
org.jenkins-ci.plugins:rapiddeploy-jenkinseq4.0
org.jenkins-ci.plugins:rapiddeploy-jenkinseq1.1
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.5
org.jenkins-ci.plugins:rapiddeploy-jenkinseq2.1
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.2
org.jenkins-ci.plugins:rapiddeploy-jenkinseq3.4

Name	Operator	Version
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.0
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.10
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.7
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.9
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	4.0
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	1.1
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.5
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	2.1
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.2
org.jenkins-ci.plugins:rapiddeploy-jenkins	eq	3.4