A cross-site request forgery vulnerability in Jenkins Static Analysis Utilities Plugin 1.95 and earlier in the DefaultGraphConfigurationView#doSave form handler method allowed attackers to change the per-job default graph configuration for all users.
CPE | Name | Operator | Version |
---|---|---|---|
static_analysis_utilities | le | 1.95 |