2 matches found
CVE-2019-16550
A cross-site request forgery vulnerability in a connection test form method in Jenkins Maven Release Plugin 0.16.1 and earlier allows attackers to have Jenkins connect to an attacker specified web server and parse XML documents...
CVE-2019-16550
Summary: CVE-2019-16550 is a CSRF flaw in the Jenkins Maven Release Plugin (versions 0.16.1 and earlier) that allows an attacker to cause Jenkins to connect to a user-specified web server and parse XML documents. Affected: Jenkins Maven Release Plugin ≤ 0.16.1. Root cause / impact: cross-site req...