Cross site request forgery (csrf)

2020-09-1614:15:00

PRIOn knowledge base

www.prio-n.com

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.2%

JSON

A cross-site request forgery (CSRF) vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller.

CPENameOperatorVersion
mongodble1.3

CPE	Name	Operator	Version
	mongodb	le	1.3

References

www.openwall.com/lists/oss-security/2020/09/16/3

www.jenkins.io/security/advisory/2020-09-16/