CVE-2019-1003091
CVE-2019-1003091 documents a missing permission check in the Jenkins SOASTA CloudTest Plugin. The vulnerability occurs in CloudTestServer.DescriptorImpl#doValidate form validation, enabling attackers with Overall/Read permission to initiate a connection to an attacker-specified server. The issue ...