Lucene search

K

GoogleOSV:GHSA-RJJQ-63C7-8724

HistoryMay 24, 2022 - 5:10 p.m.

CSRF vulnerability in Jenkins P4 Plugin

2022-05-2417:10:28

Google

osv.dev

9

csrf

jenkins

p4 plugin

vulnerability

perforce

trigger builds

add labels

EPSS

0.001

Percentile

23.9%

A cross-site request forgery vulnerability in Jenkins P4 Plugin 1.10.10 and earlier allows attackers to trigger builds or add a labels in Perforce.

References

www.openwall.com/lists/oss-security/2020/03/09/1

github.com/jenkinsci/p4-plugin

github.com/jenkinsci/p4-plugin/commit/2f2a31d8d36de7abab45820fab3a82f4c682b760

jenkins.io/security/advisory/2020-03-09/#SECURITY-1765

nvd.nist.gov/vuln/detail/CVE-2020-2141

EPSS

0.001

Percentile

23.9%

Related for OSV:GHSA-RJJQ-63C7-8724

prion1 cvelist1 nvd1 cve1 github1