3 matches found
CVE-2020-2268
A cross-site request forgery CSRF vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller...
CVE-2020-2268
CVE-2020-2268 applies to Jenkins MongoDB Plugin 1.3 and earlier. The CSRF vulnerability arises because methods implementing form validation do not perform permission checks, allowing attackers with Overall/Read permission to access metadata of arbitrary files on the Jenkins controller. The form v...
CVE-2020-2268
A cross-site request forgery CSRF vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller...